Our primary use case is two-factor authentication, and we use it for a handful of our clients.
IT Manager at a tech services company with 11-50 employees
Good support, integrates well with Fortinet products, and the licensing is cost-effective
Pros and Cons
- "FortiAuthenticator is really good software that integrates very well with Fortinet products."
- "I would like to see more ways to authenticate, such as adding facial recognition to the two-factor, where you log into your phone or another device."
What is our primary use case?
What is most valuable?
FortiAuthenticator is really good software that integrates very well with Fortinet products.
The licensing structure is cost-effective for us compared to some of the other solutions that have recurring monthly costs. We like that it has more one-time costs than the monthly recurring cost per user.
What needs improvement?
Although two-factor authentication has come a long way, there are a lot of companies that are going further. The reason for this is because people are finding ways to compromise traditional, web-based solutions. I would like to see more ways to authenticate, such as adding facial recognition to the two-factor, where you log into your phone or another device. That would be great.
What do I think about the stability of the solution?
I have had stability issues with FortiAuthenticator.
Buyer's Guide
Fortinet FortiAuthenticator
June 2025

Learn what your peers think about Fortinet FortiAuthenticator. Get advice and tips from experienced pros sharing their opinions. Updated: June 2025.
855,752 professionals have used our research since 2012.
What do I think about the scalability of the solution?
As long as you purchase the right amount of licensing, it's scalable.
How are customer service and support?
Generally, the technical support is very good. I know some people that work for Fortinet and we haven't had any issues with getting to the right resources when needed.
Which solution did I use previously and why did I switch?
We have always used Fortinet products.
How was the initial setup?
The initial setup is fairly simple because there's product training available for all of the tools from Fortinet. Our team is fully versed in those products, so it wasn't very difficult.
What's my experience with pricing, setup cost, and licensing?
The licensing fee is less in the long term because it's not a recurring cost.
What other advice do I have?
My advice is that for any solution you want to deploy, you have to ensure that your team is trained so that you can support it. Before FortiAuthenticator goes into play, make sure that your team is trained.
Overall, we are pretty satisfied with FortiAuthenticator.
I would rate this solution a nine out of ten.
Disclosure: My company has a business relationship with this vendor other than being a customer: Partner

Information Technology Manager at a tech services company with 51-200 employees
Good security and easy to use with good technical support
Pros and Cons
- "The ease of use is really nice. Using Authenticator, I've been able to actually work better on my authentication due to the fact that I have a single fabric to authenticate control from my firewall and on my access points. Authentication takes place from this area."
- "The solution could be more automated. It should be able to let me automate a lot of things so that what normally is done as a matter of manual processes can be handled quicker. Slow integrations can be taken up/out if there was more automation."
What is most valuable?
The most valuable aspect of the solution is the security. It's great.
The ease of use is really nice. Using Authenticator, I've been able to actually work better on my authentication due to the fact that I have a single fabric to authenticate control from my firewall and on my access points. Authentication takes place from this area.
It's easy to use for us due to the fact that, for each and every user, even a Mac user, we're able to easily retrieve them and add them. The authenticator syncs to my system and brings all the users to me under my firewall.
What needs improvement?
For us, the solution works quite well. I can't think of an area where improvements are needed. I haven't worked with it too extensively yet, so it's hard to gauge what's lacking.
The solution could be more automated. It should be able to let me automate a lot of things so that what normally is done as a matter of manual processes can be handled quicker. Slow integrations can be taken up/out if there was more automation.
For how long have I used the solution?
I've only worked with the solution for five or six months at this point. I haven't worked with it extensively, although I do have an understanding of how it works and what to do, as well as how to configure it.
What do I think about the stability of the solution?
It's a stable product that integrates well with other products (such as FortiNAC). It's reliable. It doesn't give us any problems. We don't have to worry about bugs or glitches of the system crashing.
What do I think about the scalability of the solution?
The solution is scalable. While we have plans to grow it out and integrate it a bit more with other solutions, we're not at that stage yet.
We are a company of about 200 people. The whole organization uses it at this point. All authentication happens through FortiAuthenticator.
How are customer service and technical support?
I'm really happy with the technical support. They are responsive and knowledgable.
Which solution did I use previously and why did I switch?
Before using FortiAuthenticator we were not using anything else. We just were controlling everything from our Fortinet firewall. That was the only equipment which we had at that point in time. Now, we have got FortiAuthenticator.
Going forward we might go for FortiNAC. That might be in the cards for us. However, we're not immediately going to make the switch as it offers access control.
How was the initial setup?
The initial setup wasn't a problem at all. It was handled by certified Fortinet engineers. For that reason, it wasn't complex or difficult.
What about the implementation team?
We had certified Fortinet engineers assist us with the initial implementation. They handled the setup and configurations as well.
What other advice do I have?
We're just end users. We don't have a special relationship with the company.
We're using the latest version of the solution. It might be something around version six.
I would recommend FortiAuthenticator to other organizations.
It is really a good product. Somebody looking for a good security product should go with FortiGate products. New users should explore all the features and see how they can maximize usage.
Overall, I'd rate the solution eight out of ten.
Which deployment model are you using for this solution?
On-premises
Disclosure: My company does not have a business relationship with this vendor other than being a customer.
Buyer's Guide
Fortinet FortiAuthenticator
June 2025

Learn what your peers think about Fortinet FortiAuthenticator. Get advice and tips from experienced pros sharing their opinions. Updated: June 2025.
855,752 professionals have used our research since 2012.
Network Security Engineer at Technicom Mali
Helps with SSL two-factor authentication but the graphical interface is outdated
Pros and Cons
- "We use this product for SSL two-factor authentication and FortiToken management."
- "It does the job I paid for, but the graphical interface could be improved."
What is our primary use case?
We use this product for SSL two-factor authentication and FortiToken management.
What needs improvement?
It does the job I paid for, but the graphical interface could be improved. If we take FortiGate or Fortinet, the graphical user interface is better designed. I think they can work on this.
It would be good to remove the FortiAuthenticator or to combine FortiAuthenticator and Fortinet. That would provide a single platform that can manage network access and user management. It doesn't make sense for me to sell FortiAuthenticator to a customer and then sell them Fortinet as well. I think they should just combine them into one solution.
For how long have I used the solution?
We've been using this solution for two years.
What do I think about the stability of the solution?
The solution is stable. I installed it two years ago, but we rarely check the internet for changes. It's really stable. We don't have problems.
What do I think about the scalability of the solution?
I think it's scalable. There are two kinds of appliances: virtual and physical. If you do a good sizing, the physical one can remain with the customer for a long time. The virtual one can be increased as you need. You can pay as you go with them. You purchase a base license and add to it as needed.
I have done an installation at an operator with over 200 users. That is the biggest one I've done.
How are customer service and technical support?
I don't usually have problems with this solution so I rarely test the support features. I cannot evaluate the support team.
How was the initial setup?
It was straightforward to implement and took one day to deploy.
What other advice do I have?
I would rate this solution as seven out of ten. I know there are other solutions that have a more modern graphical interface and provide better user management functionality. We need to tell the customer to get two solutions instead of doing the job with just one. I think I could give eight or nine to another solution, but FortiAuthenticator should be a seven.
Which deployment model are you using for this solution?
On-premises
Disclosure: My company does not have a business relationship with this vendor other than being a customer.
Solutions Architect at Exclusive GRP
Enables us to have multifactor authentication using two-factor authentication
Pros and Cons
- "For someone concerned with multifactor authentication, I'm satisfied with the product."
- "No SMS gateway from the ISP"
What is our primary use case?
I am a solution architect and my company works purely for Fortinet, implementing all versions on a daily basis, so we're not end-users. The company is an exclusive distributor implementing the product.
The primary use case of the product is usually for multifactor authentication using two-factor authentication with tokens. Sometimes people require two factors with a token. Sometimes they need the latest POC. I do a proof of concept for windows login. They need the agent who authenticates with SMS, token or email.
What is most valuable?
Usually, I do an integration with the firewall. I would prefer to do it with FortiGate, but sometimes I need to integrate as a radius client and it depends on which firewall. I prefer FortiGate. Sometimes they'll need to add an SMS as the second factor of the two-factor authentication. But usually, we do it as an unarmed radius FortiGate, or firewall would be for a radius client and radius server. Sometimes clients will ask whether we have integration with a social portal like Facebook, but we don't.
What needs improvement?
There aren't any major features that I think should be improved. I like this product. As a multifactor authentication, we have the SAML function. If you compare it with RSA or Gemalto, it does a good job. I'm able to perform multifactor authentication in different ways via emails, SMS, it's a great product. For someone concerned with multifactor authentication, I'm satisfied with the product.
There aren't any major additional features they could include in the next release but the one thing they used to include was the SMS gateway from the ISP. Fortinet used to sell that but they don't anymore and I think it would be helpful for end-users if they brought it back. I would recommend that. People are asking for it because they don't like having to rent it from their mobile provider.
For how long have I used the solution?
I've been using FortiAuthenticator for about a year.
What do I think about the stability of the solution?
The product is very stable. I love it.
What do I think about the scalability of the solution?
I think it's a scalable product. I haven't compared it to the competitors but it's scalable.
How are customer service and technical support?
Part of the reason it's such a good product is that I don't recall ever needing to call for technical support.
How was the initial setup?
Initial setup and configuration are very straightforward. From a technical perspective, you need to know where to do the PDS but if you have a technical background it should be very straightforward. I just bring the VM or the trial license and I start to do the POC, usually with the VM.
Initial setup and deployment sometimes need integration with FortiGate, and sometimes via the captive portal. It takes a maximum of an hour, but it also depends on the end-user and what they need to be integrated into the system, like features such as SMS gateway parameters.
What's my experience with pricing, setup cost, and licensing?
I think the setup cost is reasonable, and we don't need to renew the license. Sometimes there are extra costs for the VM. Our main competitors are RSA and Gemalto, and the Fortinet prices are very competitive relative to their prices.
What other advice do I have?
As a distributor of Fortinet, I would suggest people give this product a little bit of focus. I mean we can do well on this product if we concentrate on it. People don't know about the two-factor authentication and that it's easy and straightforward. We also include some features for free but I suggest that people using Fortinet just focus on this product. FortiAuthenticator has created a straightforward easy-to-use product.
I would rate it a nine out of ten. Not a ten because nothing is perfect.
Which deployment model are you using for this solution?
On-premises
Disclosure: My company has a business relationship with this vendor other than being a customer: Reseller.
Senior Security Engineer at a tech services company with 201-500 employees
A solution that offers easy integration capabilities, a simple setup, and good stability
Pros and Cons
- "The solution is easy to learn and makes it easy for our users to add FortiToken. It's very easy to integrate if you have other Fortinet devices."
- "We have issues with HA (high availability). These should be addressed in future releases."
What is our primary use case?
We primarily use the solution for FortiToken multi-factor authentication and as a VPN for login devices, among other cases.
What is most valuable?
The solution is easy to learn and makes it easy for our users to add FortiToken. It's very easy to integrate if you have other Fortinet devices.
What needs improvement?
We have issues with HA (high availability). These should be addressed in future releases.
For how long have I used the solution?
I've been using the solution for two years.
What do I think about the stability of the solution?
The solution is very stable. I'd say it's about 97% stable. We haven't experienced any crashes or anything of that nature.
What do I think about the scalability of the solution?
We haven't really tested scalability that much. We have about 200 users and we don't plan to increase usage any time soon.
How are customer service and technical support?
Technical support used to be much better. Fortinet seems to be downgrading, so everything takes longer to get a response in comparison to the past. When you make a ticket it may take as much as three days before it gets assigned.
How was the initial setup?
The initial setup was very easy.
What about the implementation team?
We handled the implementation ourselves.
What's my experience with pricing, setup cost, and licensing?
The cost is okay. It's moderate to inexpensive.
What other advice do I have?
We use the on-premises deployment model. We're both customers and partners with Fortinet.
I'd rate the solution eight out of ten.
Disclosure: My company does not have a business relationship with this vendor other than being a customer.
CEO at Blockness
A quite stable solution with decent pricing and easy installation
Pros and Cons
- "The solution's most valuable aspect is that it easy to install. The user experience is very good."
- "The hardware aspect of the solution could be improved. We are not really able to understand the hardware capabilities of the device."
What is our primary use case?
We primarily use the solution to get users.
What is most valuable?
The solution's most valuable aspect is that it easy to install. The user experience is very good.
What needs improvement?
I've only been using the solution for one month, so I haven't come across any glaring issues so far.
The hardware aspect of the solution could be improved. We are not really able to understand the hardware capabilities of the device.
For how long have I used the solution?
I've been using the solution for one month.
What do I think about the stability of the solution?
The solution is quite stable. They also send out upgrades quite often.
How are customer service and technical support?
Technical support is okay. There are some people that are quite experienced while others are less so. However, they always give me an answer. If you don't have local support at the regional level you may have to rely on Google a bit. In my experience, however, it's been fine. They are very quick.
Which solution did I use previously and why did I switch?
I've previously used WatchGuard. Fortinet is better for what is there, even though their prices are quite similar.
What's my experience with pricing, setup cost, and licensing?
The pricing is okay. It could always be less expensive, however.
What other advice do I have?
We use the on-premises deployment model.
I'd rate the solution eight out of ten. We have to compromise between price and functionality. If we had the money, we'd probably go with Palo Alto. However, it's much more expensive.
Disclosure: My company does not have a business relationship with this vendor other than being a customer.
Scaling Engineer at Lutessa 2S
Ensures double authentication for the user
Pros and Cons
- "The initial setup is so easy and there is no problem in the implementation."
- "If you want some other FortiAuthenticator from one site to another site, you should have requirements, but really if you have authentication and directory or another solution, you should change the password of the authenticator between the solution and the directory and other things. So transfer of data and other information should be simpler."
What is most valuable?
The solution is really important to ensure double authentication for the user. For example, if you have an internal messenger and you want to ensure the access externally for users, you can implement the two-factor authentication. Also, for the VPN, you can implement two-factor authentication to avoid any kind of hacks.
What needs improvement?
If you want some other FortiAuthenticator from one site to another site, you should have requirements, but really if you have authentication and directory or another solution, you should change the password of the authenticator between the solution and the directory and other things. So the transfer of data and other information should be simpler.
In the future, I think h02.exe is very important to authenticate users internally. To economically move the person from vnom to vnom. Also, the ESO to ensure the authentication of users should be a bit more automated.
For how long have I used the solution?
I've been using the solution for one year.
What do I think about the stability of the solution?
In my opinion and my experience, I didn't have any problem with the solution, just the requirements for other solutions that we should integrate with it. I think the solution is easily implemented, and, in my opinion, there is no problem with this solution. Just a bit of correction is needed, and that's it.
What do I think about the scalability of the solution?
My impression is that the solution is good and I like it and I would work with it for another project and increase my skill on the solution.
How are customer service and technical support?
I have worked with them, so I like the technical support of Fortinet. I would give them a good mark.
How was the initial setup?
The initial setup is so easy and there is no problem in the implementation. We can implement it easily in a different kind of infrastructure.
What other advice do I have?
I started working on FortiAuthenticator from last year. I have had a chance to deploy many, many projects on FortiAuthenticator. I deploy 10 next-gen projects on FortiAuthenticator. I deploy many defensive scenarios. Also, I have good experience with large products.
You should make sure to implement the requirements via experts like me, so you can implement the product carefully. In that way, you can use it clearly in a simplified manner.
For FortiAuthentication, it's a good price in comparison to any other competitor. Other products are so expensive, and the features are the same. There might be a bit of difference between the two products, but if you want just double authentication and some other features, I think I recommend the FortiAuthenticator, and it is low cost and has other defenses.
In my opinion, I recommend the solution. You can also use it for other things like h02.exe for authentication of users. Also for ESO. There are five things you can use it for, so I recommend the product. The low cost is very important for any customer.
I would rate this solution eight out of 10.
Disclosure: My company does not have a business relationship with this vendor other than being a customer.
Datacenter Engineer at a university with 501-1,000 employees
One-time passwords help to authenticate users so we know the timing of their usage
Pros and Cons
- "The feature I value the most is the one-time passwords because it helps to authenticate users so you know the timing of their usage."
- "I don't have any issues with this solution, but it may need a better, more user-friendly interface or better design of the platform."
What is most valuable?
The feature I value the most is the one-time passwords because it helps to authenticate users so you know the timing of their usage.
What needs improvement?
I don't have any issues with this solution, but it may need a better, more user-friendly interface or better design of the platform.
For how long have I used the solution?
I've been using FortiAuthenticator ( /products/fortiauthenticator-reviews ) for three years now.
What do I think about the stability of the solution?
I have found that the solution is very stable. I am officially conducting at FortiGate and I found that it was so easy to conduct my environment and control my environment with this solution.
What do I think about the scalability of the solution?
We have seven users licensed on this solution. With FortiAuthenticator it is so easy to manage our users and it is scalable to all the users at our university or in our environment.
How are customer service and technical support?
I am really impressed by the technical support because they were very helpful. Once we logged our complaint, we received an answer from them in no time, and they quickly fixed our issue.
How was the initial setup?
The initial setup is very easy.
What other advice do I have?
I will recommend this solution to others who are considering to use it. I give it a ten out of ten rating.
Disclosure: My company does not have a business relationship with this vendor other than being a customer.

Buyer's Guide
Download our free Fortinet FortiAuthenticator Report and get advice and tips from experienced pros
sharing their opinions.
Updated: June 2025
Product Categories
Single Sign-On (SSO) Authentication Systems Identity Management (IM) Multi-Factor Authentication (MFA)Popular Comparisons
Microsoft Entra ID
SailPoint Identity Security Cloud
Okta Workforce Identity
Ping Identity Platform
Yubico YubiKey
One Identity Manager
Fortinet FortiToken
RSA SecurID
CyberArk Identity
SAP Identity Management
Oracle Identity Governance
Buyer's Guide
Download our free Fortinet FortiAuthenticator Report and get advice and tips from experienced pros
sharing their opinions.
Quick Links
Learn More: Questions:
- What are the differences between FortiAuthenticator and FortiNAC?
- When evaluating Single Sign-On, what aspect do you think is the most important to look for?
- CA SiteMinder vs IBM Tivoli Access Manager
- How much time does SSO save?
- Why is SSO needed?
- What single sign-on platform do you recommend?
- Why is Single Sign-On (SSO) important for companies?
- IBM Tivoli Access Manager vs CA SSO