Fortinet FortiAnalyzer Reviews

FortiAnalyzer provides a centralized dashboard for analyzing the output of all our Fortinet solutions, like FortiGate, FortiManager, FortiSandbox, etc. It aggregates and correlates all the events.

Many of my clients are financial institutions that transmit files from around the country across a VPN. In a setup like this, it's helpful to have a centralized dashboard to manage firewalls and other security solutions across a distributed environment. You can do all sorts of analysis and configure it to trigger alarms. 

FortiAnalyzer only integrates with Fortinet solutions. That is a limitation because many organizations use multiple vendors. It's often a mixture of Cisco network hardware and equipment from other vendors, such as switches, access points, etc. 

We have used FortiAnalyzer for one year.

FortiAnalyzer is stable as long as you don't push it. It can cause trouble if you are overreliant on virtual machines and you don't have hardware acceleration. You might see some performance problems. 

FortiAnalyzer is scalable. It covers FortiGate firewalls, switches, etc. You can always buy more licenses or hardware if you need to upgrade. 

The response times could be faster.

Setting up FortiAnalyzer is straightforward. It doesn't take long because everything is already built for you unless you need to do some virtualization. The specific steps depend on your environment and what kind of device fabrics you use. 

They have three-year licenses, but I usually recommend starting with a one-year license to try FortiAnalyzer out. After that, you can switch to a three-year license. 

I rate FortiAnalyzer nine out of 10. I recommend FortiAnalyzer to anyone who is using Fortinet products. 

We primarily use the solution as a firewall and security gateway.

It is easy to configure.

The end-user finds it very easy to understand. 

It's stable and reliable.

The solution is scalable.

The initial setup is easy, and the deployment is fast. 

Technical support is generally helpful. 

I'm not sure if any features need improvement. 

They could improve the user interface a bit. The GUI could be easier to understand.

I've used the solution for four years. 

The solution is very stable. I'd rate the solution ten out of ten in terms of reliability. There are no bugs or glitches. It doesn't crash or freeze. 

It's a very scalable solution. I'd rate the ability to extend ten out of ten. It's excellent. 

We work with mostly small and medium companies. 

I haven't been directly involved with support. However, I have an understanding that they are very good. I haven't heard of any complaints. 

Positive

I'm also familiar with Check Point. I prefer Fortinet products. 

The initial setup is straightforward. I'd rate the ease of setup eight out of ten. It is quite simple. 

Deployment only takes about one week. We can handle the customer's various policies and configurations. 

It only takes one person to deploy and maintain the solution. It's easy to manage the product. The customer can self-learn the solution and manage it once it is launched. 

It is a fairly affordable solution. I'd rate the solution three or four out of ten with ten being the most expensive. It's cheap It's not costly.  

We mostly resell the solution to big and small customers. 

We're using the latest version of the solution. 

I'd recommend the solution to others. I'd recommend Fortigate products to users in general. 

I would rate the solution ten out of ten. 

We primarily use the solution as an analysis tool. 

We can look at all of the logs in one place. It helps with analysis. It's useful for centralization. We're able to collect all of the logs via the analyzer.

Overall, it's a useful tool. 

The cost is very low. It's one of the reasons I am using it. 

There are a lot of monitoring features available. 

It is easy to set up. 

You have to play a lot with it in order to find what you need and how to use it. 

It is not easy to use.

We were trying to monitor more problems via FortiAnalyzer, however, it was not very good.

We haven't received much help from the team. They haven't tried to make it better or more user-friendly. 

They need to make the monitor better.

They really need to focus on security issues. Every manager is most concerned with this and that must be at the forefront of future designs. 

I've been using the solution for three or four years. 

It is very stable and reliable. There are no bugs or glitches. I'd rate the stability nine out of ten. It doesn't crash or freeze. 

The scalability is okay. I'd rate it between five and seven out of ten. 

We have 2,000 users on the solution right now. 

The technical support is good overall. 

Neutral

I did not use a similar product previously. 

The solution is very simple to set up. It is very easy to connect all other Fortinet products to this solution. 

The pricing is reasonable. I'd rate the affordability four out of ten, where ten is the most expensive.

I'd rate the solution five out of ten overall. It's an okay product that needs to be easier to use. 

We use the solution for log analysis.

The analyzer is the most valuable feature.

The deployment is complex and has room for improvement.

I have been using the solution for five years.

The solution is stable.

The initial setup is complex. The deployment took a few hours.

The implementation was completed with an integrator.

We pay for an annual license.

I give the solution a six out of ten.

I do not recommend the solution.

We collect the logs from Fortinet in order to search and get a better view of everything that's coming from FortiGate because the overview on FortiGate isn't the same. FortiAnalyzer provides an overview of the logs and everything that's happening there. We integrate FortiGate and FortiAnalyzer with the SOC that we're working on, which is an open-source security solution.

The other use case is to have logs. Because otherwise, in FortiGate, you don't have logs for a long period of time. You only have seven days if you don't have an account in FortiGuard. So, FortiAnalyzer provides a better understanding of what's happening there. And for our clients, we always recommend FortiAnalyzer.

FortiGate by itself is a good choice, but without FortiAnalyzer, you lose a lot of features. Even the free version of FortiAnalyzer provides some useful features.

It is easy to integrate Fortinet FortiAnalyzer with other products. You have a better overview of what's going on. For example, you get a smaller alert for an infected workstation if it causes some suspicious traffic, you see it right away in Fortinet.

The only issue that I can see is with the cost. For example, if you buy support for one year, you are messed up next year. It's better to buy another gateway.

I have been using Fortinet FortiAnalyzer for one year, and I am currently working with the latest version.

It is a very stable solution and integrates perfectly.

It is a scalable solution. Our company is very proud of FortiGate solutions.

The support team is good. We have some cases open with them, and they resolve them very quickly. Even when there is a breach of security, they patch it quickly.

It is very easy to set up and deploy. Even someone with little networking knowledge or a manager can quickly understand what's happening in the network, such as an increase in traffic from specific endpoints or which websites are being browsed, including social media.

You get a gateway, but without support, it's not worth much. We've also tried FortiGate virtual machines, but the price is so high that it's better to buy other appliances than to buy the license for the VM. 

We also work with third-party solutions. However, this solution is not for everyone, and even though it's free, it's easy to implement when you have money.

Overall, I would rate it an eight out of ten.

I would advise buying FortiGate and FortiAnalyzer together. They get it free of charge. When you buy FortiGate, you can put in a FortiAnalyzer VM for free. Although the free version has its limitations, you should get it because it doesn't cost you anything. When you try the free version of FortiAnalyzer, you'll see its potential, and you'll want more.

We use this solution to actively pick up and report on all activities and connectivity going through the FortiGate firewall.

We like the fact that we can run minute-by-minute reporting form this solution.

We also appreciate that the interface of this solution is very good, and doesn't require a lot of configuration, updating, or maintenance.

We would like to see some improvement on the upgrade process around this solution. There are sometimes communication issues when a new version of the firewall is implemented, and it fails to report back to this product.

We would also like to be able to pull off incident reports and display them graphically using this solution.

We have been using this solution for about three years now.

The stability of this solution is okay. There is some room for improvement, and so we would rate the stability as an eight out of ten.

We have found this to be a fairly scalable solution.

The initial setup of this solution is very easy, and takes around three hours to complete the implementation.

We carried out the implementation using in-house resources.

The renewals for this solution are carried out yearly.

We would rate this solution a seven out of ten.

It's a lock storage correlation device. You can connect locks from different devices. Not just from Fortinet, but you can send locks from other devices to FortiAnalyzer. Basically, it is a centralized repository.

Fortinet FortiAnalyzer has a lock correlation feature. It simplifies the troubleshooting process for its customers. So now, instead of logging into every firewall, they can log into Fortinet FortiAnalyzer and check the locks. They can also check whether there are any issues with the network.

This is a difficult question for me to answer. I want the tool to have a sophisticated and customizable dashboard similar to the one in the SIEM solution. However, I'm not sure if that is in the pipeline. Basically, I would say that it's not a pure SIEM solution where your customer can have a layer on a view of dashboards or advanced dashboards.

I work with Fortinet and Palo Alto. I am also a partner of Fortinet. Even though I have been working with Fortinet for more than five or six years now, Fortinet EDR is something very new for me and us in general. We have been working on firewalls, FortiAnalyzer, FortiManager, FortiMail, FortiADC, and FortiWeb. EDR, SDMA, and ZTNA are new to us. Speaking about Fortinet FortiAnalyzer, I have been working on it for more than six years now.

The stability of Fortinet FortiAnalyzer is okay. Although some customers have encountered issues, others have had a pretty okay experience and are doing pretty well with the solution.

I would say that more than ten of our clients are working on this solution. I would say that it is kind of scalable since it comes in different form factors. Owing to the different form factors and sizing of the solution, you can add and get increased capacity. This can help a person to add more firewalls and devices.

I would say that Fortinet's tech support is really good.

Neutral

I can say that the setup is a mixture of both options. I wouldn't say it is difficult. I would rather say that the setup process is okay or moderate. Also, the straightforwardness and complexity of the setup process will depend on your environment.

The deployment of Fortinet FortiAnalyzer is not complex, but integrating it with firewalls can take some time, depending on the number of firewalls. So, the deployment of the entire solution can take approximately one week to complete.

I'm not familiar with the cost point, because I am more of a technical person and I do not do pre-sales or sales.

I downloaded reports for CrowdStrike Falcon and FortiEDR from peerspot.com to see how they are in terms of performance.

Based on current trends, people are shifting towards FortiGate devices for their attractive value proposition and exceptional performance. FortiGate is the go-to choice for firewalls. And for us, along with FortiGate, I'll even go with FortiManager and FortiAnalyzer. I rate this solution a seven out of ten.

The customer purchased a Fortinet Firewall in order to run it as a decentralized block and collect amazing security logs from their internet usage or other data from the box. The benefit of having an on-premise firewall is that they don't have to worry about any subscription, and the storage space it consumes is minimal due to the internal hard drive of the FortiAnalyzer. Furthermore, the firewall does not consume a lot of traffic from the internet due to it being on-premise.

The most valuable feature of the solution is reporting. The report that accompanies the solution includes the top 10 usages, threats to be aware of, and any highlights. Additionally, the API can be connected to other systems to receive more notifications.

The solution can improve the incident response function to provide more detailed information on where the incident is originating.

I have been using the solution for three months.

The solution is stable and we have never experienced downtime.

I give the scalability of the solution an eight out of ten.

This solution is suitable for enterprise customers with a large number of devices and logs. Fortinet FortiAnalyzer enables the compilation of log files over a period of time, such as 90 days in Thailand. This is especially useful for gathering and analyzing data.

The initial setup is simple. Fortinet FortiAnalyzer is an out-of-the-box solution, so we can start customizing as soon as we finish the installation.

I give the cost a seven out of ten. I believe that Fortinet is a cost-effective brand, making it a competitive option in terms of pricing.

An alternative solution is SolarWinds, which analyzes server performance, and could be a competitor's CM solution or a managed service that sends data from sensors on the site to their facility. The primary distinguishing feature of SolarWinds is its form factor. SolarWinds must be installed on a server and requires server resources. In the past, a large amount of OS and other resources were necessary, but the form factor has remained the same.

I give the solution an eight out of ten.

Due to the high cost, Fortinet FortiAnalyzer is not feasible to use for certain office or branch office environments. A possible compromise could be to use a combination of two solutions: for banks, the file-based solution may be beneficial, but for on-premises locations, it could be worthwhile to make use of the existing value and use it to centrally control and manage the data.

I recommend utilizing the FortiAnalyzer if our log volume is sufficient and we have a FortiGate.