2018-06-19T00:35:00Z
Miriam Tover - PeerSpot reviewer
Service Delivery Manager at PeerSpot (formerly IT Central Station)
  • 0
  • 312

What needs improvement with Fortinet FortiAnalyzer?

Please share with the community what you think needs improvement with Fortinet FortiAnalyzer.

What are its weaknesses? What would you like to see changed in a future version?

21
PeerSpot user
21 Answers
Yati Gharat - PeerSpot reviewer
Chief Technology Officer at Litmus
Real User
Top 5
2021-05-25T13:36:38Z
May 25, 2021

One thing we struggled with FortiAnalyzer was integration with SIEM. We also had issues with the new threats and APTs. There were false positives, so we needed to have some ratings related to false positives. It is easy to set up is you have FortiGate firewalls. We tried setting up with other devices, and I don't think it supports other firewalls or other devices. If it did, then it would have been great because we would have been able to use FortiAnalyzer for hybrid environments with different OEM firewalls. If we can have an intelligent analysis system which will detect false positives and detect the exact problem, it would be great. If FortiAnalyzer can integrate with FortiSIEM and give us threat reports, that will also help because then I won't need to have another tool or another dashboard which I need to look out for.

Search for a product comparison
EV
Conseiller en architecture technologique at a government with 1-10 employees
Real User
Top 10
2021-03-10T20:51:26Z
Mar 10, 2021

From my point of view, at this time, the solution isn't lacking any features or functionalities. It's very complete for our purposes.

OS
Security Engineer at a tech services company with 1-10 employees
Real User
Top 5
2021-02-11T07:18:00Z
Feb 11, 2021

In terms of what could be improved, sometimes it's lagging and also has some graphical issues with the GUI. The correlation mechanism and the analytics are not as good as the competitors like Check Point or Panorama. But for IoT and SoT, it has graphical dashboards and analytical diagram tables that can correlate various logs from other products like FortiMail and FortiWeb, so it is a good mechanism for Fortinet products. If you have various Fortinet products for your firm, you can use FortiAnalyzer like a synchro mechanism. But it needs development for software issues like the GUI bug, some logs not showing, not collecting some logs... They need to fix them.

VD
Implementation Manager at a tech services company with 51-200 employees
Reseller
Top 10
2021-01-17T09:11:26Z
Jan 17, 2021

FortiAnalyzer only works with other Fortinet products. If you need to analyze the data from other devices, other vendors, this solution is not the best one to use. The interoperability with other vendors is lacking. It's very limited. You can scan the logs from other vendors within FortiAnalyzer, however, it only collects these logs. You can't analyze anything coming from other devices or vendors. This works very well with Fortinet products. When you need to interoperate with other vendors, it's difficult, because you don't have that support. In future releases, we'd like to see more granular reporting. The reports on offer right now are pretty short.

Luis Gerardo Gonzalez - PeerSpot reviewer
Systems Architect at ZENTIUS
Reseller
Top 10
2020-12-08T05:37:34Z
Dec 8, 2020

It will be better if behavior or indicators of compromise were on the same licensing schema. Currently, it is an advanced feature that you have to purchase as an add-on. This is the reason we're trying to do the ELK so that we can integrate them and create those rules by using open-source software. It will also be better if it has some more integration with IT service management tools so that we can do endpoint protection and response based on those indicators of compromise or those behavior analysis rules that create events that can automatically flow. We can inject that data into a service incident ticket on our IT service management tool, and that way we can assign the ticket to the proper teams and respond right away. Currently, we only have integration with ServiceNow.

PK
Jr. Engineer at a computer software company with 5,001-10,000 employees
Real User
Top 20
2020-10-19T09:33:29Z
Oct 19, 2020

We should be able to do the patch upgrades in a centralized manner. This functionality is currently not there. It would be good to be able to do the firmware updates from one place and at the same time. Currently, if we want to update all appliances, we require FortiManager, which is another solution from Fortinet. Its documentation can be improved. It will be helpful for implementing the product and gaining knowledge for management purposes.

Learn what your peers think about Fortinet FortiAnalyzer. Get advice and tips from experienced pros sharing their opinions. Updated: November 2022.
655,465 professionals have used our research since 2012.
Imad Awwad - PeerSpot reviewer
Group IT Manager at a manufacturing company with 1,001-5,000 employees
Real User
Top 5Leaderboard
2020-10-11T08:58:12Z
Oct 11, 2020

It is a pretty big software package. It has a lot of features which maybe aren't that useful. It's possible that they could add some advanced analytics and some proactive controls for logging analytics. That will help a lot. The could be more automation and more artificial intelligence integrated into the solution. It was a service model application originally. It needs to have some artificial intelligence in dealing with the analysis of the nodes, and not just showing the nodes. I'm one version behind the latest version, so I don't know if they added it yet, however, if they haven't it would be a good thing to put into their roadmap.

HU
System Administrator at a logistics company with 51-200 employees
Real User
2020-09-27T04:10:00Z
Sep 27, 2020

Currently, no solution can offer you 100% protection from viruses such as WannaCry ransomware. Fortinet should strive to improve their prevention systems.

Dilip Saraf - PeerSpot reviewer
Regional Head at MASS INFONET (P) LTD.
Real User
2020-09-21T06:33:00Z
Sep 21, 2020

There aren't any features missing. It's very complete. Their in-house technical support is extremely slow to respond. We have our own in-house team to manage issues so clients don't have to wait over two weeks for a response to issues. The solution has some limitations. We use MNC, and it has a US patent. Here we can do this thing but we maybe can't do that thing. They provide some documents to customers, but the customers want remote support to take on and/or finish the work. That's why I have the deployment team in place. It's a team within our team.

Rafael Riera - PeerSpot reviewer
Pre-sales Engineer at a wholesaler/distributor with 51-200 employees
Reseller
Top 20
2020-09-13T07:02:17Z
Sep 13, 2020

Fortinet FortiAnalyzer is not in the cloud environment like some of the other products. There could be a possibility of extending its functionality to the cloud environment. If possible, they could have a deal with or integrate with other firewall manufacturers, like Palo Alto and Cisco, and mix the information. It is a difficult functionality. I don't know if any product in the market provides such functionality.

Rupsan Shrestha - PeerSpot reviewer
Technical Presales Engineer at Dristi Tech Pvt.ltd
Real User
2020-08-27T10:31:47Z
Aug 27, 2020

They can include integration with devices, such as firewalls, endpoints, from other vendors. They can include graphic monitoring of everything in the network, not just Fortinet products. It would also be good to include customizable reports and customizable views of the reports.

AlesCiber - PeerSpot reviewer
ICT System Specialist at a comms service provider with 1,001-5,000 employees
Real User
2020-08-23T08:17:18Z
Aug 23, 2020

One of the main disadvantages is not having a direct link to the security policy when you see something in the log. You should be able to right-click and go directly to the security policy. When you compare with Checkpoint, they are very good with reporting and logging, and when you right-click on the log you can go to the policy and edit it. In the next release, I would like to have a feature added where you can right-click and it takes you directly to the policy to edit it.

Baherathan Kathirgamanathan - PeerSpot reviewer
Assistant Manager - Cloud Planning and Development at a comms service provider with 1,001-5,000 employees
Real User
Top 10
2020-03-16T06:56:09Z
Mar 16, 2020

The solution doesn't have online analysis. We can't analyze certain parts of the logs. For example, we can't analyze current logs. It would be helpful if we could use the system we use to monitor everything to also check the live traffic or live logs. The solution lacks business intelligence features. It's much too basic.

PrideChieza - PeerSpot reviewer
Network Security Engineer at Frampol
Real User
2019-09-05T05:37:00Z
Sep 5, 2019

I would like to be able to do more customization. For example, I would like to be able to develop my own set of reports that I can upload to the analyzer, and then it can report in a fashionable way as to what I really expect, rather than the ones that are preconfigured. Then we can play around with them in terms of where you can position your top bandwidth users, and such. The reports are good, but they are over-summarized.

Dharmarajen Palanee - PeerSpot reviewer
Technical lead at Rogers Capital Technology Services Ltd
Reseller
2019-08-29T09:32:00Z
Aug 29, 2019

Reporting wasn't very good in the previous version, but I believe it has greatly improved. The newer version has more features and the quality of reporting is better too. I would also like to see an improvement in the rebooting.

it_user494214 - PeerSpot reviewer
System & Network Administrator at a tech services company with 11-50 employees
Real User
2019-08-29T08:53:00Z
Aug 29, 2019

With FortiAnalyzer, most of the time, although the interface is simplified, when you are new to it you have issues of navigating through it. And when it comes to pushing logs to a SIEM, most of the time we have some issues when it comes to filtering. Also, reports need to be simplified because its reporting currently includes more detailed and technical things. If we could get a simplified or executive summary, that would be good.

MA
Information Security Specialist at Ministry of Heritage and Culture
Real User
2019-08-28T09:52:00Z
Aug 28, 2019

The solution is quite expensive. The solution could use more graphics and be more specific in the dashboard. This way, I'm able to understand everything and effectively understand what's going on, including what's incoming and outgoing. Right now, I have to look up everything. I need a dashboard so that I can see specific items right there in one place.

MD
Network & Security Administrator at Diamond Bank Plc
Real User
2019-08-26T06:42:00Z
Aug 26, 2019

I'm looking for something more efficient to analyze different foreign things. That's why FortiSIEM could compete with FortiAnalyzer.

MN
Head of Service at MPM
Real User
2019-08-26T06:42:00Z
Aug 26, 2019

I would like to see an improvement in the technical support. Stronger authentication will also be a plus. In the next version, I would like to have authentication for 40 tokens.

H+Erbs Molefi - PeerSpot reviewer
Network Administrator at a university with 501-1,000 employees
Real User
2019-08-26T06:42:00Z
Aug 26, 2019

Every time there is a firmware upgrade the interface changes, and you'll have to maneuver that interface to see how to use it. When somebody is new to the system they find it difficult to perform certain operations, like backups, and to see where the reports are. A more user-friendly interface would be an improvement. I would like to see support for analyzing the wireless site, without going through the controller. For example, I would like to see a report on the full data including the APs that were up or down, and whether something has been upgraded.

RP
Consultor de Seguridad at Netrix, LLC (X956)
MSP
2018-06-19T00:35:00Z
Jun 19, 2018

It is very important that FAZ can support FortiController as the architecture designed for the network. FortiController should be registered in FAZ at least for event logs.

Related Questions
it_user434868 - PeerSpot reviewer
Senior Director of Delivery at a tech services company with 51-200 employees
Oct 5, 2022
How do you or your organization use this solution? Please share with us so that your peers can learn from your experiences. Thank you!
2 out of 31 answers
MD
Network & Security Administrator at Diamond Bank Plc
Aug 26, 2019
We use the on-prem deployment model of this solution. My primary use case for this solution is for log collection. I have a lot of FortiGates that I have to collect logs from, so I primarily use it for log collection. We plan to deploy a SIEM and we want to try to see how to integrate all the solutions to our SIEM. We are processing for PCI data specifications. We have to respond to PCI requirements, so that's why we are making some changes and acquiring some new security solutions to deploy. Among them, we have FortiSIEM and other security solutions like antivirus.
MN
Head of Service at MPM
Aug 26, 2019
Our primary use case of this solution is for bandwidth. We are very satisfied with this program.
Miriam Tover - PeerSpot reviewer
Service Delivery Manager at PeerSpot (formerly IT Central Station)
Oct 5, 2022
Hi, We all know it's really hard to get good pricing and cost information. Please share what you can so you can help your peers.
2 out of 25 answers
MN
Head of Service at MPM
Aug 26, 2019
All Fortinet programs come at a good price.
H+Erbs Molefi - PeerSpot reviewer
Network Administrator at a university with 501-1,000 employees
Aug 26, 2019
Our licensing fees are on a yearly basis. We have several products including Fortinet Wireless, FortiGate Firewalls, and FortiAnalyzer, which are bundled together and cost approximately $50,000 USD annually. We don't pay anything else in addition to the standard licensing fees.
Download Free Report
Download our free Fortinet FortiAnalyzer Report and get advice and tips from experienced pros sharing their opinions. Updated: November 2022.
DOWNLOAD NOW
655,465 professionals have used our research since 2012.