Miriam Tover - PeerSpot reviewer
Service Delivery Manager at PeerSpot (formerly IT Central Station)
  • 0
  • 42

What needs improvement with Forescout Platform?

Please share with the community what you think needs improvement with Forescout Platform.

What are its weaknesses? What would you like to see changed in a future version?

PeerSpot user
36 Answers
DVP at a financial services firm with 10,001+ employees
Real User
Top 20
Oct 26, 2022

The cost is too high. We are looking at some other solution where costs might be lower.

Search for a product comparison
Security Consultant at Airpel
Top 20
Sep 20, 2022

We have found that the agent-based authentication, available within this solution could be improved. The price-point for this solution is very high, which should be looked at in comparison with similar products currently on the market.

ILAN-YACOBY - PeerSpot reviewer
Chief Information Officer at Amarel Ltd.
Real User
Top 10
Sep 7, 2022

Forescout Platform isn't flexible with connections to devices like printers and forces you to re-enter details like the MAC address after any breakdowns.

System Administrator at Star india pvt ltd
Real User
Sep 1, 2022

Forescout Platform could improve the vulnerability management as well as the control on the endpoint, which needs to be connected to my network. In an upcoming release, they should add security features, such as malware and threat protection.

SunilkumarNaganuri - PeerSpot reviewer
Service Line Manager (Service Operations Expert) - Network Access Control at a pharma/biotech company with 10,001+ employees
Real User
Top 10
Aug 11, 2022

The product is excellent. As a product, there is nothing to complain about. However, they should improve their overall support. Let me provide an example. Assume you are in the United Kingdom, and you are also familiar with the cars in your neighborhood, and any manufacturer you have heard of. And let's say Forescout is one of the niche products, similar to Rolls-Royce. You know that Rolls-Royce is good, but you need some kind of information accessibility to use that. The comfort is good, and you can obviously drive it, but you need to understand all of the features. You need that level of knowledge, that level of information is clearly not available. First and foremost, that information is not accessible. The second point to mention is that once you purchase the later support and services. That is, they will continue to charge you for every service. Things they should have told you ahead of time are that if you run into problems during the deployment, they will keep asking you to engage the product's professional services, which they will charge you for. And from the standpoint of support, they should be adaptable. When they are aware that customers have made significant investments in these expensive licenses. And it is expected that they will receive adequate assistance. That is where they are falling short. You own a Rolls-Royce, but you are having trouble making the most of its features and functions.

KimeangSuon - PeerSpot reviewer
Pre-Sale Consultant at Yip In Tsoi Co., LTD.
Real User
Top 5Leaderboard
Jul 18, 2022

Other solutions have TACACS+, but Forescout does not. In the next release, I would like to see Forescout have accounting.

Learn what your peers think about Forescout Platform. Get advice and tips from experienced pros sharing their opinions. Updated: December 2022.
655,774 professionals have used our research since 2012.
Director, International IT Infrastructure Support & Information Security at a manufacturing company with 1,001-5,000 employees
Real User
Top 20
Jul 13, 2022

Forescout Platform could improve the costs of integrations.

Ben Masuku - PeerSpot reviewer
Business Development Specialist at Wire Speed Systems`
Real User
Top 5
Jun 19, 2022

Custom integrations need to be better. I'd like to have the option, for example, to integrate the Forescout Platform with a customized application or any other software out there that I am using at the same time. I would like the Forescout Platform to be deployable on cloud solutions, like Huawei. It's not compatible with Huawei at the moment. It can be deployed only on Amazon and AWS.

Peter Gignac - PeerSpot reviewer
Lead Technologist at Booz Allen Hamilton
Real User
Top 10
May 29, 2022

The most common complaint I hear about Forescout is about their technical support. Some sort of highly scalable platform, such as a private cloud, that can be distributed across a network quickly and grow rapidly, would be beneficial. I believe that the overall user experience has not always been preferable.

AmjadKhan1 - PeerSpot reviewer
Dy Manager Network at Fauji Foundation
Real User
Top 20
May 8, 2022

Forescout Platform could improve the integration or compatibility with other solutions, such as Chinese-made and other market solutions. They do not have any integration with H3C, RUCKUS Switching, Lenovo, CommScope, IBM Switching etc. which are network/Communication Brands. They do not have integration with new solutions in the market. They do integrate well with Brocade, Cisco, Juniper, and quite a few more but they could expand the integration.

Senior Advisor/Architect at a consultancy with 51-200 employees
Real User
Top 20
Apr 27, 2022

I don't think we tested the full potential of Forescout. We had some delay implementing it into our organization, due internal organizational issues and also due to a lack of device registrations. Meanwhile we decided to switch to a new network provider that doesn't have Forescout in its portfolio. We favour one-stop shopping for network and security services, and will migrate to Aruba ClearPass (portfolio).

Kirill Timonin - PeerSpot reviewer
Senior Information Security Engineer at Regnans
Real User
Top 20
Apr 7, 2022

This solution could be improved if there was functionality or module integration to connect Forescout with open source, container areas or Terraform. It would also be useful if this solution could run with network plugins to Kubernetes.

Security Solutions Architect at GTS
Real User
Top 20
Feb 16, 2022

The installation is not secure because it takes high admin privileges.

Instrutor at a tech services company with 1,001-5,000 employees
Real User
Top 5Leaderboard
Jan 4, 2022

If you want to deploy a new solution to block, you can't do it by yourself. You need the Forescout to deploy these solutions. They could prove this by making it better. There are virtual machine limitations, this is not a solution that they use to protect my company. In the next release of the solution, it could benefit from being more flexible to allow for more freedom.

Products & Solutions Manager Cyber Security | Forensics at a tech services company with 201-500 employees
Top 20
Sep 10, 2021

As a user, if I am using a laptop that is Wi-Fi connected, Forescout identifies my port connectivity as one user license, and if I take that same laptop with the same username to a wired network, which is also the same network that is used for the Wi-Fi connection, Forescout detects it as a separate license. At times, I am working on wireless and sometimes I enter a zone where there is no wireless connection, which forces a land connection. This is an issue that needs to be resolved because it consumes another license for the same device and the same user. This issue has been escalated to Forscout directly. There was integration with Microsoft SCCM previously, and have suddenly stopped the open integration module for Microsoft. Customers are not aware of what is available to them in terms of the open integration module. Forescout Platform advised that there are many options available and many things they can do, but they don't tell customers exactly what they are. They need clear documentation and direction as to what the customer can expect from the open integration module. Customers need some clarity on what they can do and what is not possible to do. When it comes to a full open integration we need to rely on the professional services from Forescout directly, no one can implement it as there is a limited amount of knowledge available. They need to be more considerate, and there should be good documentation available to the customer. They need to improve their selling approach or the consultant approach. One of their use cases is an ITM use case, and ITSS asset management, but they don't really do ITSS management. They only detect the ITSS and all the parameters around that test, but they do not have any integration with any database system where they can store all these details and act like a typical ITSS management system. They should remove that use case in full. They should say that we complement your ITSS management by detecting the unknown assets in your network. This would be right.

Jonathan Soto - PeerSpot reviewer
Ingeniero Senior en seguridad y telecomunicaciones at a non-tech company with 1,001-5,000 employees
Real User
Top 10
Feb 25, 2021

The licensing costs are quite high. With the amount of hardware we have, we need too many licenses to make the product effective and it's ultimately just too costly. We may have some problems with compatibility - specifically with Cisco switches. We have the perimeter a Check Point firewall as an alarm for VPN connections. We have users integrating the VPN Check Point with Forescout. We can't seem to scale due to compatibility issues and price.

Avraham Sonenthal - PeerSpot reviewer
Senior Network Engineer at a government with 5,001-10,000 employees
Real User
Top 5Leaderboard
Sep 18, 2020

The reporting feature needs improvement. An example is that currently, you cannot configure what report files will be named. I think that the reporting feature needs more flexibility. It has about 15 templates and you have to use one of them, but it is not easy to understand what each of them is. It would be nice to have more control over the format of the reports. Also, it would be nice if the configuration backup feature had more flexibility. It only supports FTP, SFTP, or SCP. That makes it impossible to write backups to a Windows share.

Benny Sumitro - PeerSpot reviewer
GM Technical Management at PT. DATACOMM DIANGRAHA
Real User
Top 5Leaderboard
Sep 13, 2020

Better integration with third-party vendors is needed because as it is now, the list of third-party solutions that we can integrate and automate is quite limited. We would like to see the list of vendors expanded to be broader. The types of products that we would like to integrate with are firewalls, patch management solutions, and SIEM applications, for example.

Dilan Jayamantri - PeerSpot reviewer
Product Manager at South Asian Technologies
Sep 8, 2020

The solution needs more definitive pricing. The costs are hard to nail down.

Product Manager - IT Security at a tech services company with 11-50 employees
Real User
Aug 12, 2020

Truth be told, I'm good with it. I'm yet to have something with the solution that I don't feel comfortable with. It's fine. I've not seen a cause or a reason why I should want something to be changed, but that doesn't take out the fact that there's always room for improvement. What I would love to see is a situation where my Forescout can integrate with different security technologies. Where it can share contextual information bidirectionally. I had written to Forescout about this and they told me they have that functionality already. So I think that settles it. They can share device context with the security technology and that technology can also be shared with Forescout. To build a form of connective strategy towards security. They have a dedicated module for the security technology I'm concerned about. But with that software, I should be able to integrate my Forescout with any other third party security technology, to build that connected security strategy I talked about. So far, it's good. It meets my requirements that I had concern about.

Odai Halawani - PeerSpot reviewer
Sr. Security Engineer at Topvision
Real User
Jun 14, 2020

Forescout Platform is too expensive, so the price should be reduced. Although Forescout manages endpoints and network devices, there is no capability for user management. This is something that should be added. For example, if I find that something is wrong in the services and need to disable a user's access, there should be no need to go to Active Directory and disable the user there. As it is now, computers and devices can be disabled, but not users.

Adesoji - PeerSpot reviewer
Head IT Infrastructure and Security at United Capital Plc
Real User
May 19, 2020

I would advise Forescout through their research and development to look for features that they can add. Also, based on the what other competition may be selling, if they find any useful feature, they should add those to their product.

Senior Security Engineer at a healthcare company with 10,001+ employees
Real User
May 13, 2020

When adding what is in scope to a policy, it would be nice if you could select multiple policies instead of one policy at a time to add what is in the scope for network segmentation. I have found that during the install and configuration of the policies that if you want to modify multiple policies or enable multiple policies that you need to define what is in the scope (IP range or segments) one rule at a time. This caused some slow downs when implementing policies. I could see after doing this repeatedly that it may lead to some premature clicking in an area that you may not have wanted, depending on how your segments are setup, and may cause issues later down the road.

reviewer1348908 - PeerSpot reviewer
Senior Network Engineer at Tessy Plastics
Real User
May 12, 2020

The product could be improved in different ways: * The speed of identification * More guest management features (i.e. extending time frames) * Sometimes, the identification profiles completely change after device upgrades. It would be beneficial to keep or merge these records if enough correlating data points exist, so as not to segment devices. Some of the features introduced into the product line could have better documentation, which could provide for an overall better experience for administrators.

reviewer1348911 - PeerSpot reviewer
Sr. Network Engineer at William Blair & Company
Real User
May 12, 2020

Better reporting and analysis of access (based on client) would be helpful. Also, a tool that allows tracing a user through the rules to authentication. More detailed analysis during the authentication process, especially for troubleshooting access issues. We have found that troubleshooting RADIUS controls is quite arduous, as it is today. A trace function could easily resolve this by providing a means by which access issues from a certificate to passwords or accounts could easily be identified and remediated.

it_user1297917 - PeerSpot reviewer
Chief Executive Officer at a tech services company with 11-50 employees
Real User
Mar 8, 2020

It could be better, they could work on the wide-area network and easier because it's a bit clumsy at the moment when we go on to a remote site. It works well in the head office but we've had challenges trying to install it across other sites. So pricing and support for branch offices. The interface is okay for the local office, but it's hard to get visibility from remote branches.

Chief Technology Officer at Penta Global Limited
Real User
Mar 5, 2020

The solution could always improve by adding more features to make it more robust.

Miguel Santiago - PeerSpot reviewer
Owner at Securnet
Real User
Mar 3, 2020

The biggest disadvantage is the pricing. I can see that the product has value. I see that the product is really good. I think that the pro is it's really stable, but price-wise, I think it's bad. But you have to pay for quality. But the pricing can be a little bit improved in my point of view. It will be harder to choose if we start comparing features and prices and when we made the initial choice. Our choice was based mainly on features. There was no price comparison involved. I think that it is not in the same landscape. The landscape has changed and there are a lot of contenders in this field. The price scale could be improved.

Chief Information Security Officer at a tech services company with 501-1,000 employees
Real User
Feb 20, 2020

There's always room for improvement for the solution. Off the top of my head, I really can't determine anything that is lacking right now. Basically there is no room for improvement that I can describe. The solution does have a bit of complexity, and there's some complexity in the deployment. Users need to be trained before undertaking an initial setup.

reviewer1259856 - PeerSpot reviewer
Director of Information Technology at a government with 201-500 employees
Real User
Jan 6, 2020

The ability to block external devices in Mac is lacking and needs to be added.

RobertoMarinozzi - PeerSpot reviewer
System Engineer at Maticmind S.p.A.
Real User
Nov 28, 2019

For the user, the policy that they have implemented sometimes needs adjustments. Sometimes the features that the customer asks for aren't involved in the main installation, and I need to bolt an add-on in. However, I never know if this policy is the right one when I do this.

Founder at EME Pty Ltd
Real User
Jul 11, 2019

We experienced some detection issues when checking compliance for the Sophos agent.

Ricardo Martins - PeerSpot reviewer
Network System Administrator at Compugraf
Real User
Feb 12, 2019

They should improve features related to IT security. ForeScout should analyze behavior to see if the behavior is malicious behavior and block this device. They should develop the ability to analyze the behavior of the device in my environment. The interface of this solution and the integration part needs improvement. The difference between the 7th and the 8th version is the dashboard. They should improve it.

Olugbenro Iluyemi MSOR, CCNA-Security, SENSS, ITIL V3 - PeerSpot reviewer
Network and Security Engineer at Guaranty Trust Bank Plc (GTBank)
Real User
Nov 21, 2018

* Battled with the use of SNMP v1 instead of v2c * Direct web interface rather than installation of a client.

Manuel Keller - PeerSpot reviewer
Head of Network and Communication Department at a program development consultancy with 10,001+ employees
Oct 16, 2018

Multitenancy should be included in the next version so it could be used as a managed service provider.

Michael Varga - PeerSpot reviewer
IS-Operations Security Analyst at a energy/utilities company with 10,001+ employees
Real User
Top 5Leaderboard
Nov 16, 2015

* JAVA Memory management - leaving the app running for multiple days requires relaunch * Search - needs boolean functionality (or psudeau operand now working)

Related Questions
User at rak
Sep 10, 2021
Hi,  I have been  researching these two products: Cisco ISE (Identity Services Engine) vs Forescout Platform, Please advise which one would you choose and why? Thanks.
See 1 answer
Security Solution Engineer at a computer software company with 501-1,000 employees
Sep 10, 2021
Although both are NAC solutions, Cisco ISE and Forescout are totally different products. Cisco ISE is part of the pre-admission NAC systems family (like Aruba Clearpass) based on 802.1X. Forescout, instead, is part of the post-admission family (like FortiNAC or the brand-oriented Extreme network NAC solution).  In other words, Forescout (and all the post-admission NACs) does not use primary.  802.1x but a mix of tricks and various methods ( ssh SNMP API  and traffic mirror DHCP DNS traffic, and yes also 802.1x, if needed) to admit or reject the access of an identity AFTER it has accessed the network.  If an identity changed somehow its behavior AFTER it has been admitted, a post-admission NAC system may react by changing its state, for instance changing its VLAN or disconnecting it.So the answer to your question  is : you must choose the NAC solution according to your needs, your network and your budget too (Forescout is 40-50% more expensive than Cisco ISE). Almost all NAC solution licensing is based on concurrent users. So, you must compare all NAC  solutions per user/ price/year.
Network Engineer at a tech services company with 501-1,000 employees
Aug 10, 2021
Hi, I'm a Network Engineer at a Tech Services company (size: 500+).  I would like to find out the main differences/comparison between Cisco ISE and Forescout Platform. Can anyone assist?
2 out of 3 answers
Evgeny Belenky - PeerSpot reviewer
Director of Community at PeerSpot (formerly IT Central Station)
Aug 10, 2021
Hi @Sean Muller, @Nayef Hamzeh, @Chandra-Prakash, @Josept Conde, @Dilan Jayamantri, @Jonathan Soto, @Miguel Santiago ​and@Avraham Sonenthal,  It seems you should be able to share some professional advice in relation to this question. Thanks in advance for helping other community members!
Avraham Sonenthal - PeerSpot reviewer
Senior Network Engineer at a government with 5,001-10,000 employees
Aug 10, 2021
OK, so Cisco ISE uses 802.1X to secure switchports against unauthorized access. The drawback of this is that ISE cannot secure the port if a device does not support 802.1x. Cameras, badge readers, temp sensors, etc would fall into this category. Then you have to leave the port unsecured. Also, 802.1x requires you to drop config on every switchport, and have other infrastructure installed to support it. Also, Cisco ISE licensing is complicated and draconian. In some cases, the same endpoint might need to utilize 4 different licenses at the same time. Forescout operates differently and does not rely on 802.1x. Forescout listens to a variety of sources. For one thing, Forescout can listen to the wire through SPAN. Forescout also uses SNMP to monitor and control switches, routers, and APs. So Forescout can hear when a connection is made to a switchport, discover the IP of the endpoint on that port, control the endpoint if possible through AD or an installed agent, place the switchport into a quarantine VLAN if needed, and if SPAN traffic is available, place a virtual firewall rule in front of the endpoint. It can query the endpoint for processes, apps, OS, AV, and many other things.The main advantage of Forescout is it doesn't need 802.1x on every switchport to control access, which is quite burdensome to configure. It senses every device on the network instantly, can listen to the wire, has multiple ways of gathering data, and can control switches. Licensing is simple and is per IP address. Cisco ISE may be required for certain Cisco technologies or environments - then you don't have a choice. ISE is expensive and has extensive licensing requirements. You will need to dedicate at least one person to become an ISE SME, and training will be mandatory. The main advantage of Cisco ISE over Forescout is it can be a TACACS server natively.
Related Articles
Netanya Carmi - PeerSpot reviewer
Content Manager at PeerSpot (formerly IT Central Station)
Apr 10, 2022
PeerSpot’s crowdsourced user review platform helps technology decision-makers around the world to better connect with peers and other independent experts who provide advice without vendor bias. Our users have ranked these solutions according to their valuable features, and discuss which features they like most and why. You can read user reviews for the top Top 5 Network Access Control (NAC) S...
See 2 comments
Arvind Singh - PeerSpot reviewer
Engineer at IPR
Apr 7, 2022
This is based on the user's feedback. A link for Gartner report should also be available.
IT Infrastructure Manager at a healthcare company with 10,001+ employees
Apr 10, 2022
As a user of Cisco ISE, I am completely not trusting this review. Cisco ISE is a buggy immature solution.
Related Articles
Netanya Carmi - PeerSpot reviewer
Content Manager at PeerSpot (formerly IT Central Station)
Apr 10, 2022
Top 5 Network Access Control (NAC) Software Solutions
PeerSpot’s crowdsourced user review platform helps technology decision-makers around the world to...
Download Free Report
Download our free Forescout Platform Report and get advice and tips from experienced pros sharing their opinions. Updated: December 2022.
655,774 professionals have used our research since 2012.