Fortinet FortiClient Room for Improvement

Solutions Architect at a comms service provider with 51-200 employees

The deployment status is not good in Mac devices and sometimes in Windows-based devices using GPO, like Active Directory, that are not on the local network. Deployment can be a painful task in these cases. 

You need to get a management console in the cloud because the EMS server must be deployed on-premises in order to connect to FortiGate. This is because the on-cloud server is not deployed well. It's not good enough yet for the customer to use. So, the deployment cases and the management console of the EMS server must be improved.

Development of a mail protection feature would be nice because there's not one present right now. Something that looks at the email that's getting into the PC or the possibility to use a monitor for the EMS server would be great.

View full review »
Sachin Vinay - PeerSpot reviewer
Network Administrator at Amrita

FortiClient is not great in Linux. Our clients report issues from some of their Linux versions where FortiClient has some issues. In Windows, it is perfectly fine. In Mac OS also, it is excellent; however, in Linux, it is somewhat tough to handle.

We would like to see user-based authentication. It is already there. However, we are not able to save profiles completely in many of the releases. We will need to type these user-based things again and again on each connection fail. Therefore, once it gets connected, it is not completely up. We need to connect again after a session time-out.

View full review »
IT Manager at SAI Systems

Sometimes there are issues when we are trying to connect. The error doesn't give us the proper feedback. Exactly what is wrong and how we can troubleshoot it is not clear.

We have approximately 500 users who are using FortiClient. They do not provide us a central point of how to deploy on all the users from one location. Manually, we have to go and install it on every user's system.

If we could have multiple VPN connections at the same time or a VPN channel to different VPNs, that would be ideal.

View full review »
Buyer's Guide
Fortinet FortiClient
November 2022
Learn what your peers think about Fortinet FortiClient. Get advice and tips from experienced pros sharing their opinions. Updated: November 2022.
654,658 professionals have used our research since 2012.
Lead Architect at a computer software company with 51-200 employees

SAML authentication was newly introduced (Post 6.2) but the free customizable version (Forticlient Configuration tool) from FNDN is still at 6.0.10. I would like to see in an upcoming release the free version of Forticlient Configuration tool supporting authentication and customizable for the customers. This is available in the FortiClient developing networks, but it is only available without SAML authentication. 

Also would like to see more descriptive error messages when authentication fails in Forticlient specially when using forticlient VPN connection from Windows Login with Fortitoken as a 2FA

View full review »
Zsolt Zalka - PeerSpot reviewer
Corporate IT Manager at PRopex Furnishing Solutions

We opened a ticket in Forti for a virtual desktop environment client to see if we could use it in the cloned desktop. We're using it in a virtual environment and need to sort that out so it also will work for cloned environments. They're working on that. However, it's not perfect right now.

I don't really want to add new features. However, I would like to add the zero-day protection that they offer in the FortiXDR solution to this product. Right now, it's another product. They are clever guys. They make you buy more than one solution instead of putting everything together.

While we like patch management, it would be nice if it could handle patch management for other solutions, like Microsoft.

View full review »
FrançoisNolin - PeerSpot reviewer
Cybersecurity architect at Alithya

I’m not sure what exactly can be improved.

It would be interesting if the solution offered a way to try to investigate and create a use case to trace vectors.

View full review »
Senior Network Consultant at a financial services firm with 10,001+ employees

Not too many releases have been made. The latest concerned version seven. The one before it, six, was around for a long time. From the client's perspective, there has not been released anything which fully stacks up against Cisco. There should be more frequent releases or updates.

The solution can initially be a pain for new users and may take around two weeks for one to properly familiarize himself with it. 

View full review »
Network Infrastructure Manager at a financial services firm with 5,001-10,000 employees

The artificial intelligent aspect of it needs improvement. Having worked with Sophos Intercept X before, I found it fascinating, especially the integration between the endpoint agents and the file. The synchronized security in that solution was great.

However, with Fortinet, it's not as easy. Sophos was simpler. With Sophos, when you are securing your assets, you are securing not only the network perimeter but also the endpoints. And the threats are coming from all sorts of directions. They can come from the internet or a USB. Fortinet needs to cover more areas where threats can come from.  

View full review »
Rui Ribeiro - PeerSpot reviewer
Director Of Information Technology at Banco Millennium Atlântico

The solution could be improved in these areas:

1. Support (If you have the Advanced Support Services you are in heaven) if not you will be in hell for a long time.

2. Licensing Division (They are starting to understand the value of their product and slicing everything to make money)

3. EDR with EMS better integrate them on the same single plane of glass. We will be waiting for it.

4. Working with Distribution sometimes comes at a cost due to a lack of knowledge of the current status of your licensing and products.

5. Advertise needs to be better for the ELA.

View full review »
Sutjipto Budiman - PeerSpot reviewer
Director at Widya Presisi Solusi

I'm now looking for some sort of option that can maybe be centrally located. We want the IP in our office to centralize the settings and so on. The one that we use, hasn't had that kind of capability to push the settings.

We'd like to be able to properly encrypt the data more effectively. We want them to offer encryption of the hard drive.

The initial setup can sometimes be complex.

View full review »
Junior Network Administrator at a tech services company with 501-1,000 employees

I don't use it enough to be able to say what could be improved.

We've got one client where it was blocking the smartphones, and there's a way to set it up on Fortigate that's supposed to do that. However, it didn't work with them since they had a 2FA multi-factor. It was integrated with a Microsoft NPS server, and it does not work with that. It just blocks everything. Therefore, it doesn't integrate well. If they like to update the Fortigate so that you can VPN in, it’s fine. However, not from smartphones. That doesn't work at all. For somebody with the NPS server, it just screwed everything up. We're still trying to fix that.

View full review »
Ralf Sooth - PeerSpot reviewer
CEO at a tech services company with 11-50 employees

The user interface on the central server could be improved.

In terms of additional features, the only thing I could imagine is that it should handle not only FortiClient VPN connections; it should also integrate with OpenVPN, for example. They should open it up for non-FortiGate devices. It is not a must, but it would be nice to have.

View full review »
Director of Information Technology at a real estate/law firm with 201-500 employees

Its stability can be improved. It is not as reliable as I would like it to be. There are times when things don't work quite right.

Our biggest pain point is not related to Fortinet FortiClient and the whole scheme of things. It is related to one of the additional services called FortiGuard. They are the arm that does all of the updates to definitions, keeps all the signatures updated, and responds to new threats and whatnot. What we have found is that they react quickly, but sometimes their solutions aren't compatible with all of the components of the Fortinet security suite, specifically around FortiSandbox.

View full review »
Sr. Manager at Emirates Technology Solutions

In terms of improvements, their SSL VPN tunnel can be a lot better. I've seen other products that have got much better VPN features than Fortinet.

Some of my colleagues get this error called "License not available." When they get this error, they have to uninstall and reinstall it. This kind of problem is there, and sometimes, we have to open a case with Fortinet to resolve it. Their support is quick, so we are able to resolve and move forward.

In terms of new features, when it is connecting, it should check the endpoint and say whether the end client is actually safe enough or whether there is a vulnerability. It should give a pop-up on the client itself. Because I'm on the admin side, I can also see this information in the log. However, if a non-IT user, such as a user from finance, is working on this and there is some problem, he or she would not know about this and would call IT admin to say that this is not working. If the users get a message explaining why and what is happening, it is easy for them to understand.

View full review »
Bořivoj Tydlitát - PeerSpot reviewer
Chief Security Officer at The Mama AI

FortiClient has compatibility issues between different versions, for example, the VPN doesn't work well between FortiClient 6.4 and FortiGate. There are usability issues with vulnerability scanning and with reporting. It's often difficult to interpret and there are inadequate features in management identity. I would appreciate a better explanation of the findings of the malware scanning and of things like real-time protection. The solution is geared toward centralized single sign-on for the workstations, which is something we do not have. From that point of view, it's not a good match. I've also found the SSL VPN very sensitive to network disruptions. The anti-ransomware feature is hard to use because when it finds something, it doesn't provide adequate information and there are false positives that are hard to identify. Generally, it's difficult to access the documentation of the APIs as it requires an invitation via sponsorship from a Fortinet employee. We had some long-running issues, but that's perhaps because our configuration is not mainstream.

View full review »
System Engineer at ALLOT

We would like Fortinet to add the function or the possibility to use all FortiClient features for free.

It has enough features in general for our usage requirements. It doesn't need anything more. 

View full review »
Network Engineer at a tech services company with 1-10 employees

I'd like the ability to specify when EMS is controlling the client and when it's not because you would have a lot more options were it not for the client. As it stands, you need to edit the XML file on EMS to get those options. 

I also think Fortinet could improve the VPN. It's good, but Cisco AnyConnect is a bit better. Fortinet could add split tunneling for the routes, like AnyConnect. Currently, you have to go into the command prompt and then print the route. So someone who's not that knowledgeable of the product will not know how to do it. Fortinet could maybe include some more next-gen AV stuff, but I think that's going to be integrated into the new packages we've got. 

View full review »
Jovan Jovanovic - PeerSpot reviewer
Product Manager at a tech services company with 1,001-5,000 employees

Fortinet should support older Windows versions. Their competitor, Kaspersky, has an embedded security solution that covers HP and the oldest version of Windows, those before Windows 10 or Windows Vista.

In Eastern Europe, for example, there are a lot of companies that are still using Windows XP on their machines. Their machines, therefore, cannot be properly protected by FortiClient and they can easily end up with a Trojan horse in their system. Basically, anybody can jump into their network through these machines that are not covered and properly secured.

View full review »
Ganesh-S - PeerSpot reviewer
Information Security Engineer at a healthcare company with 1,001-5,000 employees

The software inventory part is not yet up-to-date. It doesn't have a great interface, which is a disadvantage. I wish we could leverage it, but we don't use it at all because it's not that reliable.

View full review »
Mohd FauzanRahim - PeerSpot reviewer
Senior Network Engineer at Measat Broadcast Network System

We'd like to have a guided config process. We'd like it so that, when you want to configure something or allow new segments or servers, you launch a wizard, which will guide you on how to configure it.

We'd also like to see a deployment wizard to help implementation become streamlined. 

View full review »
Sabuhi Ismayilov - PeerSpot reviewer
Cyber Security Senior Specialist at MilliKart llc

FortiClient has not given us any ongoing problems. We did have a problem with uninstalling it, but we opened up a service request ticket to resolve it.

The solution can improve by adding new remote console or endpoint features to make the solution easier to use.

In a future release, the web client section could improve by adding more features, such as a firewall.

View full review »
Consultant at a tech services company with 10,001+ employees

We have been facing some issues when we use the web browser to log into the VPN gateway and we use the SSL VPN through the web page and have found that the browser is unstable.

It is difficult to get logs for the client on the firewall.

Technical support can be improved. While they respond quickly they don't resolve the issues quickly.

I have yet to find the benefits of the latest upgraded version.

View full review »
Furqan Ahmed - PeerSpot reviewer
Network Engineer at Pronet

The solution has some issues with stability on the user side. 

View full review »
Clement Johnson - PeerSpot reviewer
Chief Executive Officer at Clemtech LLC

The solution should have faster turnaround when it comes to new technology. I'm speaking of next generation technology. For instance, they have a laboratory for investigating new technologies and I work with them towards the goal of releasing these to the industry a bit faster to allow us to start planning. 

View full review »
OFIS-TECHNOLOGIES Njanjouo - PeerSpot reviewer
Security Engineer at OFIS TECHNOLOGIES

While I cannot think of new features to add, it would be nice if the reports were improved, to have these sent automatically. 

View full review »
IT Security Analyst with 11-50 employees

The reports could be easier to set up.

View full review »
Infrastructure Specialist at a computer software company with 11-50 employees

The EDR feature to be included in the basic license.

View full review »
Ahmet Coruk - PeerSpot reviewer
Co-founder at Korunet

The solution could improve by providing analytics or more detailed reports.

View full review »
SaifKhan1 - PeerSpot reviewer
Network Security Engineer at a consumer goods company with 201-500 employees

I am troubleshooting some errors that I have had with the VPN and they are difficult to resolve.

In the next release, I would like to see an additional layer of security added.

View full review »
SaifKhan1 - PeerSpot reviewer
Network Security Engineer at a consumer goods company with 201-500 employees

The current version of this solution does not show the malicious websites that have been visited. They should add this to an upcoming release.

There should be an automatic bootup scan option easily accessible.

View full review »
Director at a comms service provider with 201-500 employees

It would be extremely useful to have an automatic updating feature.

View full review »
Mike-Robinson - PeerSpot reviewer
Owner at Mar Consulting Services

One area that could be improved is cost, but you've got to pay for what you get.

View full review »
Systems Administrator at a international affairs institute with 201-500 employees

We do not use the solution every day and there are times when the new users have trouble reconnecting. The technology itself works but our users getting adopted to it is a major problem. Having the user adapt to the desktop landing page that it begins on is throwing them off a bit. 

View full review »
Veljko Mitar Car - PeerSpot reviewer
Presales Manager at a tech services company with 11-50 employees

The documentation of this product could be improved. 

View full review »
Business Development Manager at a tech services company with 1-10 employees

With the lower-end licenses, it tends to kick you out after eight hours. There is a function where it automatically kicks you out after eight hours. They could improve that and not kick you out after eight hours. Other than that, it is already pretty good.

View full review »
Senior Engeneer

Fortinet FortiClient could improve the compatibility with mobile applications that are allowed and sometimes they do not respond. However, Microsoft Windows applications are very good.

View full review »
Project Manager at Stockholm School Of Economics

There is room for improvement by increasing the solution's knowledge base.

View full review »
Benny Sumitro - PeerSpot reviewer
GM Technical Management at PT. DATACOMM DIANGRAHA

The solution could be more secure. I would like to see more safety features. They could integrate access scanning from the VPN account. We have servers integrated with our firewall. When we changed the firewall, we needed to change the VPN.

View full review »
Software Analyst at Altron

As far as I can tell, the solution only has one single function, so they could expand its functionality.

View full review »
AICARDO Sylvain - PeerSpot reviewer
System Engeneer at Inatum

Fortinet FortiClient could improve the connection because sometimes it drops.

View full review »
Alessandro Povero - PeerSpot reviewer
Systems Engineering Specialist at ATECH – NEGÓCIOS EM TECNOLOGIA S/A

We've had some problems with having to remove the current version and either reinstalling an old version or updating to the new one.

View full review »
Shehzad Ali - PeerSpot reviewer
Information Security and Compliance Officer at Carnation

It would be nice to see more in hand features in terms of the DLP, so that the solution can be integrated with the DLP, as well as more reporting features on the end point. 

View full review »
Data engineer and data analyst at a financial services firm with 201-500 employees

I would like Fortinet to improve FortiClient's compatibility with macOS.

View full review »
SOC Expert at a computer software company with 1,001-5,000 employees

I would like for the next release to be more user-friendly for users to do not have as much of a technical background.

View full review »
Manager at Inspira Enterprise

FortiClient's encryption key could be stronger so that it's not broken too easily.

View full review »
Janderson Mira - PeerSpot reviewer
Diretor Técnico at TND Brasil

The features for application control and device control must be improved.

View full review »
Buyer's Guide
Fortinet FortiClient
November 2022
Learn what your peers think about Fortinet FortiClient. Get advice and tips from experienced pros sharing their opinions. Updated: November 2022.
654,658 professionals have used our research since 2012.