Coming October 25: PeerSpot Awards will be announced! Learn more
Julia Frohwein - PeerSpot reviewer
Senior Director of Delivery at PeerSpot (formerly IT Central Station)
  • 0
  • 275

What needs improvement with Fortinet FortiAuthenticator?

Please share with the community what you think needs improvement with Fortinet FortiAuthenticator.

What are its weaknesses? What would you like to see changed in a future version?

PeerSpot user
20 Answers
ElisoBrito - PeerSpot reviewer
Analista de Suporte at NCT Informática
Real User
Top 5
30 August 22

The integration with other products, for example, some SAML authentications, would make it more flexible.

Nicolas Martinez - PeerSpot reviewer
Co-Founder - Innovation & Education Manager at Global Seis S.A.S
Real User
Top 20
12 July 22

I'd like to see a simplified two-factor authentication process and some additional security around the function of geolocation. If you can't authenticate to protect transactions, and the security is weak, it's a problem.

Mechnical, of 1 adjustment and assembly at Daumar
Real User
19 May 22

FortiAuthenticator's interface could be better.

MS at a consultancy with 11-50 employees
Top 20
23 February 22

The speed of deployment on the cloud could be improved. It took a few days when it should have been just two days. In the next release, I would like to see compatibility with non-Android and non-Apple platforms.

Security Engineer at Futuretec
Real User
Top 5Leaderboard
21 February 22

There are some protocols, such as SHA and SHA-2, that are not supported. This is something that Fortinet is working on.

Channel Account Manager-Lead-West at a tech services company with 1,001-5,000 employees
Real User
Top 20
28 December 21

There are multiple areas that are in need of improvement. It is not a mature product. It is difficult to successfully configure.

Learn what your peers think about Fortinet FortiAuthenticator. Get advice and tips from experienced pros sharing their opinions. Updated: September 2022.
633,572 professionals have used our research since 2012.
Assistant Infrastructure Manager at a maritime company with 1,001-5,000 employees
Real User
Top 20
09 November 21

The only way the solution could be improved is if it were cheaper.

Ernesto Chang - PeerSpot reviewer
Presales Engineer at a comms service provider with 5,001-10,000 employees
Real User
Top 10
22 February 21

I would like to see integration and customization capabilities with the end-user portal to solve authentication issues with diverse implementation scenarios. Specifically, with web applications, enterprise networks, and VPN.

Ayokunmi Ogundapo - PeerSpot reviewer
Systems Administrator at Interswitch
Real User
Top 5Leaderboard
01 February 21

I'd say that the integration with some other enterprise applications could be improved. For instance, ADFS. FortiAuthenticator does not work natively with ADFS and the company is not looking in that direction. It's one of our in-house applications and it was a challenge integrating with FortiAuthenticator. We had to write a separate, customized adapter for ADFS before we could make it work. We tried to get Fortinet to work on it but I don't think their development team is interested. It's not in their plan. The other challenge was when I integrated with I think VMware - there was an issue between the radio adapter and FortiAuthenticator. Both parties were not ready to work together and the implementation was buggy. I believe this solution can be adapted to so many things, depending on the technical side and the implementation engineers. I'd like to see some additional use cases that can be infused into the solution, such as ADFS.

Ibrahim Massad - PeerSpot reviewer
Senior Network & Security Engineer at a tech services company with 11-50 employees
Top 20
29 January 21

So far there hasn't been any major feature that we wished for and didn't find, but I would say in regards to bugs, sometimes we face unexpected issues that delay the implementation a little. However, I believe Fortinet will sort this out soon. Hopefully the solution will be more stable overall. In terms of what additional features we would like to see in the next release, we would to see support for more of the common operating systems. They already support Windows OS, with the use of an agent installed on the windows machine. However, we would like to see support for Linux-based operating systems for example. This is a shortcoming that I have faced a few times already. Also a nice addition would be agents for End-user Machines especially Windows OS & MAC OS.

IT Manager at a tech services company with 11-50 employees
Real User
Top 20
07 December 20

Although two-factor authentication has come a long way, there are a lot of companies that are going further. The reason for this is because people are finding ways to compromise traditional, web-based solutions. I would like to see more ways to authenticate, such as adding facial recognition to the two-factor, where you log into your phone or another device. That would be great.

Information Technology Manager at a tech services company with 51-200 employees
Real User
23 September 20

For us, the solution works quite well. I can't think of an area where improvements are needed. I haven't worked with it too extensively yet, so it's hard to gauge what's lacking. The solution could be more automated. It should be able to let me automate a lot of things so that what normally is done as a matter of manual processes can be handled quicker. Slow integrations can be taken up/out if there was more automation.

Manager at a financial services firm with 501-1,000 employees
Real User
16 August 20

There is nothing that really stands out as something that needs desperately to be added or improved. We are using Fortinet all the time, we know their GUIs, so we can manage well with FortiAuthenticator also. The main problem now is not exactly with the product itself. We are using FortiAnalyzers. But when we use that product with FortiAuthenicators, we can not use SQL language to access data from the FortiAnalyzers database. When we use it with FortiGate, we can query the FortiAnalyzers database, but it is not possible to do it directly with the FortiAuthenicators. This integration should be better.

Network Security Engineer at a tech services company with 11-50 employees
Real User
13 November 19

It does the job I paid for, but the graphical interface could be improved. If we take FortiGate or Fortinet, the graphical user interface is better designed. I think they can work on this. It would be good to remove the FortiAuthenticator or to combine FortiAuthenticator and Fortinet. That would provide a single platform that can manage network access and user management. It doesn't make sense for me to sell FortiAuthenticator to a customer and then sell them Fortinet as well. I think they should just combine them into one solution.

WahidAlarasi - PeerSpot reviewer
Solutions Architect at Exclusive GRP
Real User
04 November 19

There aren't any major features that I think should be improved. I like this product. As a multifactor authentication, we have the SAML function. If you compare it with RSA or Gemalto, it does a good job. I'm able to perform multifactor authentication in different ways via emails, SMS, it's a great product. For someone concerned with multifactor authentication, I'm satisfied with the product. There aren't any major additional features they could include in the next release but the one thing they used to include was the SMS gateway from the ISP. Fortinet used to sell that but they don't anymore and I think it would be helpful for end-users if they brought it back. I would recommend that. People are asking for it because they don't like having to rent it from their mobile provider.

Senior Security Engineer at a tech services company with 201-500 employees
Real User
15 October 19

We have issues with HA (high availability). These should be addressed in future releases.

it_user1179432 - PeerSpot reviewer
CEO at Blockness
Real User
07 October 19

I've only been using the solution for one month, so I haven't come across any glaring issues so far. The hardware aspect of the solution could be improved. We are not really able to understand the hardware capabilities of the device.

Datacenter Engineer at a university with 501-1,000 employees
Real User
17 July 19

I don't have any issues with this solution, but it may need a better, more user-friendly interface or better design of the platform.

Mohammed Semmour - PeerSpot reviewer
Scaling Engineer at Lutessa 2S
Real User
10 July 19

If you want some other FortiAuthenticator from one site to another site, you should have requirements, but really if you have authentication and directory or another solution, you should change the password of the authenticator between the solution and the directory and other things. So the transfer of data and other information should be simpler. In the future, I think h02.exe is very important to authenticate users internally. To economically move the person from vnom to vnom. Also, the ESO to ensure the authentication of users should be a bit more automated.

RAMACHANDRAR - PeerSpot reviewer
Director - Global Solutions & Customer Service at Bits and Byte IT Consulting
Real User
04 June 19

They need to have some kind of write-up and solution document that people can access very easily. All of the Cisco documentation is available on their website and in other places. They should make it available to the public. The more people know about this product, the better. That will make it easier for them to position FortiAuthenticator to their customers or use the product in production. Other features that would improve the product are a single sign-on where people can use their Gmail ID to log-in, etc. This feature we wanted and now they are rethinking it. At this stage, I can't give any other suggestions for improvement other than this. A single sign-on is used to create a user ID and password for the user to get onto the network. You can ask them to use their LinkedIn credentials or maybe Gmail, some of the social networking credentials to gain access. This is useful when you are onboarding any guest users for internet access. This is something that is a very good feature which they could have integrated already.

Related Questions
User at PT. Autojaya Idetech
Jan 12, 2022
Hi peers, How do FortiAuthentucator and FortiNAC differ? I am also comparing it with Aruba ClearPass.
See 1 answer
Eray Ucman - PeerSpot reviewer
Network Security Administrator at BEYAZ.NET
12 January 22
Hi, The NAC can operate without the 802.1x mechanism on the switch side. Also, I think you are making a very wrong comparison on the basis of the class it belongs to(FortiNac vs FortiAuthenticator). 
Nurit Sherman - PeerSpot reviewer
Content Operations Manager at PeerSpot (formerly IT Central Station)
Apr 26, 2018
One of the most popular comparisons on IT Central Station is Auth0 vs Okta. One of the users on our site says about Auth0, " It's more efficient than regular session management through a database because I only request profile data when needed." Another user says about Okta, "We are able to deploy solutions rapidly and also have a better idea on licensing as we can easily see who has access, ...
2 out of 8 answers
it_user512529 - PeerSpot reviewer
User at Covisint
25 April 18
For my money, Covisint’s SSO services as an integral component of IDAM and Access Governance are highly competitive.
it_user829968 - PeerSpot reviewer
User at a tech company with 51-200 employees
25 April 18
I agree , on most aspects, they are on par. During my investigations I found Auth0 to have better documentation with case-studies and and easy startup-code snippets. Also RBAC seems to be simpler with Auth0
Download Free Report
Download our free Fortinet FortiAuthenticator Report and get advice and tips from experienced pros sharing their opinions. Updated: September 2022.
633,572 professionals have used our research since 2012.