Fortinet FortiAuthenticator Reviews

A typical use case for Fortinet FortiAuthenticator is that it suits their infrastructure because they have the products.

One of the best features of Fortinet FortiAuthenticator is integration to the FortiGates.

The area for improvement in Fortinet FortiAuthenticator is its price.

I have been working with Fortinet FortiAuthenticator for a couple of years, approximately two years.

The scalability of Fortinet FortiAuthenticator rates as high, achieving a perfect score of 10.

Technical support from Fortinet deserves a rating of 10. Their service is excellent.

Positive

The initial setup of Fortinet FortiAuthenticator was straightforward, working effectively out of the box.

As a consultant, I have been installing Fortinet FortiAuthenticator at customer sites. I work for a reseller that sells Fortinet products.

My relationship with Fortinet is as a reseller and implementer.

I have not directly observed a return on investment from Fortinet FortiAuthenticator. Being in a technical rather than sales role, this aspect is typically handled by the sales team.

I have not been working with Fortinet FortiAuthenticator's AI capabilities.

I would recommend Fortinet FortiAuthenticator to others because of its quality and my positive experience with the solution.

On a scale of 1-10, I rate Fortinet FortiAuthenticator an 8 overall.

We use the solution for identity access management. The people who manage our network devices use the tool as an SSO tool for security or interconnectivity. We use it for remote access, too. We use it in our environment and three of our clients’ environments. We haven’t faced any issues.

The product enables SSO. So we can avoid multiple authentications. We can have a single point of authentication and connectivity for VPN and remote access. The integrations work fine. It is very easy to integrate with the Fortinet environment.

The security space is changing. The product must provide passwordless and seamless connectivity. If a particular user is identified automatically, they should not be authenticated repeatedly with tokens. It should be seamless. It could be a physical device, hardware, or some digital identity. Once the user logs in, they must be able to connect seamlessly. The integration with third-party tools must be better.

I have been using the solution for four years.

I rate the tool’s stability an eight out of ten.

I rate the tool’s scalability an eight out of ten. The solution is suitable for all company sizes.

Technical support is good.

The deployment is seamless. The product is cloud-based.

We deploy the solution in-house. Our team supports our clients and manages their environment.

The price is fine. I rate the pricing an eight and a half out of ten.

We haven’t tested it on a hybrid environment. We use FortiAuthenticator along with Active Directory. Active Directory has some issues. FortiAuthenticator as a database must be segregated or isolated. Then, it can sync with Active Directory. Cisco Duo is a competitor. However, if we have a FortiGate environment, FortiAuthenticator is a better choice for accessibility and identity management. I will recommend the product to others. Overall, I rate the solution an eight out of ten.

Our use case for the solution involves managing and optimizing our organization's network traffic across multiple sites. 

The platform has significantly improved our organization's network performance and security. It has simplified network management, reduced operational costs, and ensured seamless connectivity across all our sites.

The product's most valuable feature is its no-license requirement for SD-WAN functionality, significantly reducing operational costs. The ease of use, interactive GUI, and comprehensive security features are also beneficial.

The solution's command line interface could be improved to provide better support for low-level debugging and advanced configurations. 

Additionally, features that streamline user management and integration with other Fortinet products would be advantageous.

I have been using Fortinet's SD-WAN solution for about three years.

The product is stable. I rate the stability a nine out of ten. 

The solution is highly scalable, allowing seamless expansion as the organization grows. Adding new devices and managing them through FortiGate's centralized interface is straightforward.

The technical support services are good as long as the license is active. Without an active license, it becomes difficult to contact them. 

I have used Meraki SD-WAN before. However, I prefer Fortinet's SD-WAN due to its cost-effectiveness and security features.

The initial setup was relatively straightforward, especially for basic SD-WAN functionalities. More complex configurations may require additional time and expertise.

We implemented the product with the help of our in-house team. 

The platform is cost-effective as it does not require a separate license for SD-WAN functionality.

I evaluated other options, including Cisco and Aruba, but found Fortinet's SD-WAN superior for ease of use and integration with other Fortinet products.

I rate Fortinet FortiAuthenticator a nine out of ten. 

Our primary use case for the product is to enable two-factor authentication for our VPN solutions within FortiGate. Additionally, we utilize it to secure our FortiWeb tool security portal with two-factor authentication.

Improvements in the product could start from the dashboard, overall customization, and configuration. FortiAgent, installed on an end user's computer, provides two-factor authentication but lacks centralized management. This particular area needs improvement. 

We've been using Fortinet FortiAuthenticator for around five years, staying updated with the latest version.

I rate the platform's stability as four out of ten. When they release new software, we sometimes encounter issues utilizing the box, and it takes almost 30 days to resolve them.

In just our organization, where we are a partner, there are around 100 Fortinet FortiAuthenticatorusers. However, we have implemented the solution for customers with up to 10,000 users.

I rate the scalability a ten out of ten.

The technical support team is helpful.

Neutral

Our organization has a diverse portfolio of products, including Check Point and hardware such as switches, Xfinity Networks, Juniper, HP, and Dell.

We typically only need to perform installation updates or implement changes if infrastructure changes occur at the customer's end. This doesn't happen often, once or twice a year. When implemented correctly, it's not complicated to manage, so it isn't required. We have a team of five engineers responsible for deployment, maintenance, and all other operations related to the product.

The platform provides a user-based pricing model rather than a subscription pricing model. For instance, the virtual machine and license for 100 users amount to around $2000. Additionally, there may be additional expenses for features like FortiToken.

I rate the pricing an eight out of ten.

FortiAuthenticator enhances user authentication by integrating a database with user credentials, including logins and passwords. This integration enables the import of user data from various sources such as Active Directory, Microsoft, OpenLDAP, or RADIUS servers. Additionally, FortiAuthenticator supports adding a second factor for authentication, which can include options like Fortinet SMS, email tokens, or other methods.

The implementation has significantly improved access management within our organization. We have exposed certain portals like Avaya and Microsoft Exchange to the public internet by adding a two-factor authentication login process to these portals using the product.

The most critical feature in improving our security is the two-factor authentication feature. It also includes an agent that can be installed on a user's computer, adding another layer of security to the login process for computer access.

For these users, incorporating the second factor poses no problem. However, some less experienced users may need help adding and using the second factor during login. With assistance from our help desk and after a few attempts, these users find the process straightforward.

Integrating FortiAuthenticator with our existing infrastructure has been quite easy, especially considering our experience as a business partner of Fortinet. After several years of using and implementing the product for our customers, we've encountered no major issues. The process is simple, typically taking only a few implementations to become familiar with all the features.

I recommend it to others and rate it an eight out of ten.

We use the product for multi-factor authentication, single sign-on, and FIDO integration. We utilized it while logging into Windows and remote SSL VPN with MFA.

The product's on-premise version doesn't have recurring costs.

Fortinet FortiAuthenticator's initial setup process could be easier.

We have been using Fortinet FortiAuthenticator for two years.

It is a stable platform.

It is a scalable platform.

Fortinet provides excellent support services. A level-one engineer will attend your first call if you have a basic support contract. However, your call will be transferred to a specialist if you have an advanced-level support contract.

Neutral

We used Duo before. It is a cloud solution and has recurring costs. Thus, we switched to Fortinet FortiAuthenticator as it is an on-premise solution and comparatively inexpensive without recurring costs. They only charge a nominal fee for support.

The initial setup is complex. It would be helpful if customers get assistance from professional services. They can customize it depending on the architecture visibility. It is easy to design if they hire a knowledgeable architect. It takes less than a week to complete.

Our company provides professional software development services to different clients.

The product generates a lower ROI than other vendors.

I rate Fortinet FortiAuthenticator a nine out of ten. I advise others to have clarity on the visibility and scope of the design and then start with the deployment.

The solution allows connectivity when switching between LAN and Wi-Fi primarily, and it also uses it for free tokens. So we can share tokens across multiple firewalls.

RADIUS server and integration, apart from the fact that it is a type of tool that can become a certificate server, are the valuable features for which I use it.

I'd like to see the interface become more like other FortiGate products. It seems a little bit of an orphaned one. The user interface and clustering are areas with shortcomings that need improvement.

Scalability has room for improvement since it's not really a cluster. It'd be nice with cluster data. There are things where you have to go to each FortiGate to change. So, there needs to be a cluster.

I have been using Fortinet FortiAuthenticator for five years.

The current version is stable. So, Fortinet FortiAuthenticator 6.3.3 is running.

Scalability-wise, it is a fine solution. Scalability-wise, I rate the solution a nine out of ten.

Around 20 customers are using the solution.

Regarding the support team, I would say that we have faced occasional setup issues for which the support was appropriate.

The initial setup is complicated. However, considering the complicated tasks it does, it is fine.

In general, you just spend about three days designing and implementing the solution.

The deployment is done in the customer's environment and as per what they require. So, configure the LDAP integration and SAML integration with the existing sources. Then I started to create the SAML services and RADIUS services for firewalls. I then copy to add the tokens before authenticating the users. Then, they can pull it down from the OTAP service.

The customers need to pay for licenses, and some pay on a yearly basis while others pay on a three-yearly or five-yearly basis. Also, it is not an expensive solution.

I would definitely recommend the solution to those planning to use it. However, I would suggest those planning to use it figure out what they want because you also have a FortiGate product, Fortinet product, and FortiAuthenticator, which can be a bit confusing. There are other products that FortiGate sells. So you have to figure out which solution you want.

I rate the overall solution a nine out of ten.

We use the solution for different clients and how they authenticate for VPN and Wi-Fi. We also use it for the captive portal and single sign-on. We use it for quite a bit for authentication.

The product has become a central hub for how dozens of our clients authenticate to VPN and Wi-Fi. It has given us a very easy way to manage dozens of customers and how they authenticate and troubleshoot. It gives us a one-stop shop for everything. The solution is very easy to manage. When we have multiple customers authenticating to multiple domain controllers, it centralizes all that from an MSP perspective.

The ease of management of authentication for multiple clients is a valuable feature.

The product must provide full support for third-party FIDO security keys. It must also provide full support for YubiKeys authentication keys.

I have been using the solution for about four years.

The tool is extremely stable. I rate the stability a ten out of ten.

We can scale the solution pretty well. I rate the scalability a ten out of ten.

We rarely have to call the support team for this product. When we do call, support is usually pretty good.

Positive

The solution was straightforward to deploy.

I have seen an ROI on the tool.

I rate the pricing an eight out of ten. The solution is not very expensive.

If someone’s looking for a way to easily manage the different ways that users can authenticate in their environment, I would suggest Fortinet FortiAuthenticator 100%. It's an extremely good value for all the different things that it does. Overall, I rate the product a nine out of ten.

FortiAuthenticator provides multi-factor authentication. After testing your username and password, it adds another layer of authentication where FortiAuthenticator challenges you with a number provided by the FortiToken app on your mobile phone.

I appreciate its ability to provide multi-factor authentication, but it's primarily focused on this function.  

There are some minor things that could enhance the overall experience. Maybe enhancing user integration with other solution tools to implement multifactor authentication using virtual authentication. 

Another area of improvement is stability and support.

We have been using this solution for two and a half years. We use the latest version, we usually update the solution for the upgraded version. 

It is quite stable. I would rate the stability a nine out of ten. There are other solutions that perform certain aspects better than FortiAuthenticator. It's a strong solution, but there's room for enhancement.

There are no problems with scalability. In our company, all the employees use it to access network resources through VPN. And around 60% of our customers also use this solution. 

Customer service and support are quite good. Fortinet provides quick and helpful responses, though occasionally, the answer might not directly address the issue.

We used Cisco SSO authentication system before switching to Fortinet FortiAuthenticator. It was mainly because of economic aspects. 

The setup depends on the integration requirements. Integrating FortiAuthenticator with other Fortinet products is relatively straightforward.

In terms of implementation, it performs quite well.

The deployment time is variable. Due to occasional weaknesses in the API, deployment time can vary. Sometimes it's easy, and sometimes not due to these factors.
We managed the deployment ourselves. In another business unit of my company, we're integrators for this tool. We handle the sale and implementation projects, so we have the required competencies.

For example, we need to set up the network and integrate it with the desired resolution for the deployment process. Then, deploy the client zone to the users' mobile phones, enabling them to use virtual authentication configurations.

The solution is deployed both on-prem and cloud. The staff needed includes engineers, developers, and sometimes even technical support for custom API creation and customer designations.

I have seen an ROI because the solution allows you to enhance security, leading to better rates in other security aspects.

It's not expensive. As we increase the number of users, we'll also be expanding the company workforce.

It's a yearly payment, but you can also find options for monthly payments. There are no additional costs to the standard license. 

I would rate the pricing a five out of ten, where one is the cheapest and ten is expensive. 

The advice is simply to use it. Overall, I would rate the solution an eight out of ten.