2019-03-12T07:26:00Z
Miriam Tover - PeerSpot reviewer
Service Delivery Manager at PeerSpot (formerly IT Central Station)
  • 0
  • 49

What needs improvement with Fortinet FortiClient?

Please share with the community what you think needs improvement with Fortinet FortiClient.

What are its weaknesses? What would you like to see changed in a future version?

49
PeerSpot user
49 Answers
Furqan Ahmed - PeerSpot reviewer
Network Engineer at Pronet
Real User
Top 5Leaderboard
2022-09-16T15:04:10Z
Sep 16, 2022

The solution has some issues with stability on the user side.

Search for a product comparison
AN
Project Manager at Stockholm School Of Economics
Real User
Top 20
2022-09-16T10:37:00Z
Sep 16, 2022

There is room for improvement by increasing the solution's knowledge base.

Mohd FauzanRahim - PeerSpot reviewer
Senior Network Engineer at Measat Broadcast Network System
Real User
Top 5
2022-09-15T11:31:40Z
Sep 15, 2022

We'd like to have a guided config process. We'd like it so that, when you want to configure something or allow new segments or servers, you launch a wizard, which will guide you on how to configure it. We'd also like to see a deployment wizard to help implementation become streamlined.

RW
Software Analyst at Altron
Real User
Top 5
2022-09-01T13:17:11Z
Sep 1, 2022

As far as I can tell, the solution only has one single function, so they could expand its functionality.

Ralf Sooth - PeerSpot reviewer
CEO at a tech services company with 11-50 employees
Real User
Top 10
2022-08-23T10:05:15Z
Aug 23, 2022

The user interface on the central server could be improved. In terms of additional features, the only thing I could imagine is that it should handle not only FortiClient VPN connections; it should also integrate with OpenVPN, for example. They should open it up for non-FortiGate devices. It is not a must, but it would be nice to have.

MB
Senior Engeneer
MSP
Top 5
2022-07-20T11:07:59Z
Jul 20, 2022

Fortinet FortiClient could improve the compatibility with mobile applications that are allowed and sometimes they do not respond. However, Microsoft Windows applications are very good.

Learn what your peers think about Fortinet FortiClient. Get advice and tips from experienced pros sharing their opinions. Updated: November 2022.
654,218 professionals have used our research since 2012.
Janderson Mira - PeerSpot reviewer
Diretor Técnico at TND Brasil
Reseller
Top 5
2022-07-19T08:03:42Z
Jul 19, 2022

The features for application control and device control must be improved.

Bořivoj Tydlitát - PeerSpot reviewer
Chief Security Officer at The Mama AI
Real User
Top 5
2022-07-17T09:52:31Z
Jul 17, 2022

FortiClient has compatibility issues between different versions, for example, the VPN doesn't work well between FortiClient 6.4 and FortiGate. There are usability issues with vulnerability scanning and with reporting. It's often difficult to interpret and there are inadequate features in management identity. I would appreciate a better explanation of the findings of the malware scanning and of things like real-time protection. The solution is geared toward centralized single sign-on for the workstations, which is something we do not have. From that point of view, it's not a good match. I've also found the SSL VPN very sensitive to network disruptions. The anti-ransomware feature is hard to use because when it finds something, it doesn't provide adequate information and there are false positives that are hard to identify. Generally, it's difficult to access the documentation of the APIs as it requires an invitation via sponsorship from a Fortinet employee. We had some long-running issues, but that's perhaps because our configuration is not mainstream.

AICARDO Sylvain - PeerSpot reviewer
System Engeneer at Inatum
Real User
Top 5
2022-07-11T06:09:11Z
Jul 11, 2022

Fortinet FortiClient could improve the connection because sometimes it drops.

Zsolt Zalka - PeerSpot reviewer
Corporate IT Manager at PRopex Furnishing Solutions
Real User
Top 5Leaderboard
2022-07-10T15:39:21Z
Jul 10, 2022

We opened a ticket in Forti for a virtual desktop environment client to see if we could use it in the cloned desktop. We're using it in a virtual environment and need to sort that out so it also will work for cloned environments. They're working on that. However, it's not perfect right now. I don't really want to add new features. However, I would like to add the zero-day protection that they offer in the FortiXDR solution to this product. Right now, it's another product. They are clever guys. They make you buy more than one solution instead of putting everything together. While we like patch management, it would be nice if it could handle patch management for other solutions, like Microsoft.

AP
Junior Network Administrator at a tech services company with 501-1,000 employees
MSP
Top 20
2022-07-05T22:57:28Z
Jul 5, 2022

I don't use it enough to be able to say what could be improved. We've got one client where it was blocking the smartphones, and there's a way to set it up on Fortigate that's supposed to do that. However, it didn't work with them since they had a 2FA multi-factor. It was integrated with a Microsoft NPS server, and it does not work with that. It just blocks everything. Therefore, it doesn't integrate well. If they like to update the Fortigate so that you can VPN in, it’s fine. However, not from smartphones. That doesn't work at all. For somebody with the NPS server, it just screwed everything up. We're still trying to fix that.

FrançoisNolin - PeerSpot reviewer
Cybersecurity architect at Alithya
Real User
Top 10
2022-07-05T06:33:23Z
Jul 5, 2022

I’m not sure what exactly can be improved. It would be interesting if the solution offered a way to try to investigate and create a use case to trace vectors.

Alessandro Povero - PeerSpot reviewer
Systems Engineering Specialist at ATECH – NEGÓCIOS EM TECNOLOGIA S/A
Real User
Top 20
2022-06-01T16:46:25Z
Jun 1, 2022

We've had some problems with having to remove the current version and either reinstalling an old version or updating to the new one.

SS
IT Security Analyst with 11-50 employees
Real User
Top 10
2022-05-31T14:47:00Z
May 31, 2022

The reports could be easier to set up.

Rui Ribeiro - PeerSpot reviewer
Director Of Information Technology at Banco Millennium Atlântico
User
Top 10
2022-05-23T08:05:00Z
May 23, 2022

The solution could be improved in these areas: 1. Support (If you have the Advanced Support Services you are in heaven) if not you will be in hell for a long time. 2. Licensing Division (They are starting to understand the value of their product and slicing everything to make money) 3. EDR with EMS better integrate them on the same single plane of glass. We will be waiting for it. 4. Working with Distribution sometimes comes at a cost due to a lack of knowledge of the current status of your licensing and products. 5. Advertise needs to be better for the ELA.

SK
Infrastructure Specialist at a computer software company with 11-50 employees
Real User
2022-04-05T11:54:00Z
Apr 5, 2022

The EDR feature to be included in the basic license.

GM
SOC Expert at a computer software company with 1,001-5,000 employees
Real User
Top 5
2022-02-17T09:15:00Z
Feb 17, 2022

I would like for the next release to be more user-friendly for users to do not have as much of a technical background.

Ganesh-S - PeerSpot reviewer
Information Security Engineer at a healthcare company with 1,001-5,000 employees
Real User
Top 10
2022-01-12T15:42:25Z
Jan 12, 2022

The software inventory part is not yet up-to-date. It doesn't have a great interface, which is a disadvantage. I wish we could leverage it, but we don't use it at all because it's not that reliable.

Mike-Robinson - PeerSpot reviewer
Owner at Mar Consulting Services
Real User
Top 5
2021-12-07T23:07:00Z
Dec 7, 2021

One area that could be improved is cost, but you've got to pay for what you get.

NG
Systems Administrator at a international affairs institute with 201-500 employees
Real User
Top 20
2021-11-15T14:36:59Z
Nov 15, 2021

We do not use the solution every day and there are times when the new users have trouble reconnecting. The technology itself works but our users getting adopted to it is a major problem. Having the user adapt to the desktop landing page that it begins on is throwing them off a bit.

Clement Johnson - PeerSpot reviewer
Chief Executive Officer at Clemtech LLC
Real User
Top 5Leaderboard
2021-10-25T22:29:54Z
Oct 25, 2021

The solution should have faster turnaround when it comes to new technology. I'm speaking of next generation technology. For instance, they have a laboratory for investigating new technologies and I work with them towards the goal of releasing these to the industry a bit faster to allow us to start planning.

DD
Network Engineer at a tech services company with 1-10 employees
Real User
Top 20
2021-10-01T16:50:00Z
Oct 1, 2021

I'd like the ability to specify when EMS is controlling the client and when it's not because you would have a lot more options were it not for the client. As it stands, you need to edit the XML file on EMS to get those options. I also think Fortinet could improve the VPN. It's good, but Cisco AnyConnect is a bit better. Fortinet could add split tunneling for the routes, like AnyConnect. Currently, you have to go into the command prompt and then print the route. So someone who's not that knowledgeable of the product will not know how to do it. Fortinet could maybe include some more next-gen AV stuff, but I think that's going to be integrated into the new packages we've got.

Ahmet Coruk - PeerSpot reviewer
Co-founder at Korunet
Real User
Top 5Leaderboard
2021-09-28T13:22:09Z
Sep 28, 2021

The solution could improve by providing analytics or more detailed reports.

OFIS-TECHNOLOGIES Njanjouo - PeerSpot reviewer
Security Engineer at OFIS TECHNOLOGIES
Real User
Top 20
2021-08-12T07:38:40Z
Aug 12, 2021

While I cannot think of new features to add, it would be nice if the reports were improved, to have these sent automatically.

SaifKhan1 - PeerSpot reviewer
Network Security Engineer at a consumer goods company with 201-500 employees
Real User
Top 5Leaderboard
2021-06-11T07:32:45Z
Jun 11, 2021

The current version of this solution does not show the malicious websites that have been visited. They should add this to an upcoming release. There should be an automatic bootup scan option easily accessible.

SaifKhan1 - PeerSpot reviewer
Network Security Engineer at a consumer goods company with 201-500 employees
Real User
Top 5Leaderboard
2021-05-18T12:14:38Z
May 18, 2021

I am troubleshooting some errors that I have had with the VPN and they are difficult to resolve. In the next release, I would like to see an additional layer of security added.

Sutjipto Budiman - PeerSpot reviewer
Director at Widya Presisi Solusi
Real User
Top 5Leaderboard
2021-04-30T13:21:55Z
Apr 30, 2021

I'm now looking for some sort of option that can maybe be centrally located. We want the IP in our office to centralize the settings and so on. The one that we use, hasn't had that kind of capability to push the settings. We'd like to be able to properly encrypt the data more effectively. We want them to offer encryption of the hard drive. The initial setup can sometimes be complex.

JJ
Solutions Architect at a comms service provider with 51-200 employees
Reseller
Top 5
2021-04-28T18:11:43Z
Apr 28, 2021

The deployment status is not good in Mac devices and sometimes in Windows-based devices using GPO, like Active Directory, that are not on the local network. Deployment can be a painful task in these cases. You need to get a management console in the cloud because the EMS server must be deployed on-premises in order to connect to FortiGate. This is because the on-cloud server is not deployed well. It's not good enough yet for the customer to use. So, the deployment cases and the management console of the EMS server must be improved. Development of a mail protection feature would be nice because there's not one present right now. Something that looks at the email that's getting into the PC or the possibility to use a monitor for the EMS server would be great.

DY
Consultant at a tech services company with 10,001+ employees
Real User
Top 20
2021-02-26T14:56:32Z
Feb 26, 2021

We have been facing some issues when we use the web browser to log into the VPN gateway and we use the SSL VPN through the web page and have found that the browser is unstable. It is difficult to get logs for the client on the firewall. Technical support can be improved. While they respond quickly they don't resolve the issues quickly. I have yet to find the benefits of the latest upgraded version.

GS
Sr. Manager at Emirates Technology Solutions
Real User
Top 10
2021-02-25T11:08:09Z
Feb 25, 2021

In terms of improvements, their SSL VPN tunnel can be a lot better. I've seen other products that have got much better VPN features than Fortinet. Some of my colleagues get this error called "License not available." When they get this error, they have to uninstall and reinstall it. This kind of problem is there, and sometimes, we have to open a case with Fortinet to resolve it. Their support is quick, so we are able to resolve and move forward. In terms of new features, when it is connecting, it should check the endpoint and say whether the end client is actually safe enough or whether there is a vulnerability. It should give a pop-up on the client itself. Because I'm on the admin side, I can also see this information in the log. However, if a non-IT user, such as a user from finance, is working on this and there is some problem, he or she would not know about this and would call IT admin to say that this is not working. If the users get a message explaining why and what is happening, it is easy for them to understand.

NH
Director of Information Technology at a real estate/law firm with 201-500 employees
Real User
Top 20
2021-02-24T18:17:36Z
Feb 24, 2021

Its stability can be improved. It is not as reliable as I would like it to be. There are times when things don't work quite right. Our biggest pain point is not related to Fortinet FortiClient and the whole scheme of things. It is related to one of the additional services called FortiGuard. They are the arm that does all of the updates to definitions, keeps all the signatures updated, and responds to new threats and whatnot. What we have found is that they react quickly, but sometimes their solutions aren't compatible with all of the components of the Fortinet security suite, specifically around FortiSandbox.

MS
Lead Architect at a computer software company with 51-200 employees
Real User
Top 5
2021-01-29T13:26:07Z
Jan 29, 2021

SAML authentication was newly introduced (Post 6.2) but the free customizable version (Forticlient Configuration tool) from FNDN is still at 6.0.10. I would like to see in an upcoming release the free version of Forticlient Configuration tool supporting authentication and customizable for the customers. This is available in the FortiClient developing networks, but it is only available without SAML authentication. Also would like to see more descriptive error messages when authentication fails in Forticlient specially when using forticlient VPN connection from Windows Login with Fortitoken as a 2FA

BK
IT Manager/systems engineer at a tech services company with 51-200 employees
Real User
2020-11-24T06:58:33Z
Nov 24, 2020

For buying or deploying it with additional features, apart from VPN client, web security, or antivirus, I would like to see the USB key blocking function included in this solution for endpoint security. For endpoint security, you need antivirus and all of the features included in antivirus software these days, web security, and USB key locking feature. If it is implemented in a way that in one package, you have all the primary features needed for security these days, it would be nice. All of those features will probably be additionally charged as it is a web security feature on FortiClient.

Steven Hall - PeerSpot reviewer
Head Of Consulting at Acurus
Real User
Top 10Leaderboard
2020-11-18T12:19:50Z
Nov 18, 2020

I would like to see endpoint detection and response included.

Muhammed Amimul Ehsan - PeerSpot reviewer
AGM at Partex Star Group
Real User
Top 5
2020-09-21T06:33:00Z
Sep 21, 2020

This product is very good. Graphically, it is okay, but this may be one area where it could be better. It should be more graphically inviting. It is okay as it is, but it could be improved. If I compare FortiClient VPN and OpenVPN, FortiClient VPN takes too much time while installing on someone's computer or laptop. I do not know why that is. The installation takes too much time compared to OpenVPN. OpenVPN is a very light software. It is installed in a couple of seconds. It does not make sense that FortiClient takes so long to install. I just feel it is a problem that could be addressed.

Enayat Galsulkar - PeerSpot reviewer
Senior Information Security Consultant at Future Telecom
Real User
Top 5Leaderboard
2020-08-26T07:13:21Z
Aug 26, 2020

The only thing that is lacking in this product is the support. Their support can be improved.

it_user1204620 - PeerSpot reviewer
Senior Network & Security Solution Architect Consultant at Corenet Inc
Consultant
2020-08-19T07:57:00Z
Aug 19, 2020

The improvement required for Fortinet is that they must increase RAM in low-end Firewalls. because low-end Firewalls come with very low RAM, due to low RAM users faced performance issues when increase user traffic, that can cause performance issues. even we know other vendors are using a minimum of 04 GB RAM. But Fortinet for their low-end entry-level box is using only one/two GB RAM. That is very low and can be a performance issue. If we compare the performance based on their datasheet, it does not really meet the full requirements. For example, if we are using the FG-60F Network Security Firewall 10xGE, the throughput is 10 gigs. But the memory is two GB. Two GB of memory is too low to handle the throughput. So they should increase the memory in the box. Fortinet can gain end customer confidence.

David Yang - PeerSpot reviewer
Senior Director, Technical Support and Product Development at Exclusive Networks
Real User
2020-08-09T07:19:00Z
Aug 9, 2020

There isn't much to improve in terms of features and comparison with other vendors. It just needs to stay more up to date in catching the malware. The user interface may be improved, which would be a minor enhancement. Unlike central management, in endpoint security, the end users don't need to keep looking at the endpoint user interface. The technology is the most important thing in endpoint security.

MichaelZhang - PeerSpot reviewer
IT Director at Guangdong Technion Institute of Technology
Real User
Top 5Leaderboard
2020-07-29T07:45:55Z
Jul 29, 2020

I think that FortiClient can enhance the multifactor authentication. Currently, if you want to enable dynamic tokens with FortiClient authentication, you only have one option, which is supplied by Fortinet. You cannot integrate FortiClient VPN with Google authenticator or Microsoft authenticator, it's impossible. I think that they can improve this module. In the next release of this solution, if they could improve the MFA, it would be a perfect solution.

AT
Workplace Support Services at a comms service provider with 10,001+ employees
Real User
2020-07-26T08:18:56Z
Jul 26, 2020

When we change our endpoint, we have to connect again, which means having to enter our credentials and permissions. Also, we are facing some connectivity issues after changing our mode of connection to a public base. It's slow in reconnecting. I would like to see changes to the speed in the end-user connectivity improved in the next release of FortiClient.

MY
Network Security Manager at Onix-it solutions
Real User
2019-09-29T07:27:00Z
Sep 29, 2019

FortiClient is not communicating with the new version of the firewall.

it_user1135854 - PeerSpot reviewer
Presales Engineer at soulco
Real User
2019-09-27T04:38:00Z
Sep 27, 2019

The pricing of the solution should be less expensive. It would be nice if you could connect to three or four sites at a time.

it_user1140780 - PeerSpot reviewer
Consultant at Ingram Micro Inc.
Real User
2019-09-26T04:12:00Z
Sep 26, 2019

I feel that this product is more to bolster their marketing, rather than its use for actual synchronization. This solution is not able to deliver interprocess visibility when it comes to the endpoint, and this is something that needs to be done. Other solutions, such as Carbon Black, are able to do this. The memory check needs to be improved, giving better visibility into the run-time memory. The anti-exploitation engine needs enhancement. When it comes to Windows processes and protocols, they need to be included in a more effective way. As it is now, they simply have a checkmark beside it. They have visibility of the protocol, for Windows and the operating system communication, but they are not offering the same level as other solutions, such as Sophos, when it comes to the endpoint. The level of data protection provided by this system is inconsistent.

RD
Systeem / Netwerkbeheerder at a financial services firm with 51-200 employees
Real User
2019-09-24T05:43:00Z
Sep 24, 2019

The pricing could use improvement. It should be cheaper. The reporting can also always be better.

SA
Network Engineer at a tech services company with 11-50 employees
Real User
2019-09-24T05:43:00Z
Sep 24, 2019

My customers say they need a consultation to fully integrate services. This needs improvement. I would like to see better integration. The price could also use improvement. In the next release, some of our clients said that while they can select different customers, they get confused and they would like to also see the logo of the company. The name is written but they want to see the logo as well.

JoelSadomba - PeerSpot reviewer
IT Engineer at BAZ
Real User
2019-09-02T06:55:00Z
Sep 2, 2019

I would like to see an improvement in the web filter, because I think it can be more user-friendly. For instance, if I want to authorize a user to access a certain website, it should be easy for that user to edit those websites on the exempted list. But sometimes I find that my users can't do that when I am not at the office. Due to the fact that some of our users operate remotely, it sometimes happen that they can't access a specific website. Then I have to go through all the websites, or dive into the users machine just so that I can change the configuration. I therefore think it should be a little bit easier for a user to add a certain website to the exempted list. Something else that should be worked on, is the compatibility issues between versions 6.2 and 6.0, because it is not easy to upgrade your firewall to the latest version with admin. If you want to upgrade, you need a hardware change.

VS
ICT Officer at a non-profit with 5,001-10,000 employees
Real User
2019-08-20T05:12:00Z
Aug 20, 2019

Initially, the support was very poor. It is getting better, but they should continue to improve this. Currently, we are having issues where the antivirus is blocking an item, but it is almost impossible to disable the antivirus. If the user wants to lift these priveledges they can't. Some options are not changeable. You cannot switch off a blockage even temporarily. I understand why it is like that, but I would like to give less control to these important processes because right now it is very complicated to turn off the protection even for testing purposes.

Avraham Sonenthal - PeerSpot reviewer
Senior Network Engineer at a government with 5,001-10,000 employees
Real User
Top 5Leaderboard
2019-05-06T18:25:00Z
May 6, 2019

I haven't found that that solution does anything amazing. There is nothing special about it. It works trouble free just like any other client.

Raul Rivera - PeerSpot reviewer
Cybersecurity Engineer at GFR Media
Real User
2019-03-12T07:26:00Z
Mar 12, 2019

We had some issues using IPsec as a remote tunnel protocol and we had to change those configurations from IPsec to SSL. That was the only issue we had with FortiClient during the four years we used it. Everybody else is doing AI, machine learning, self-healing, next-generation features. They should incorporate more next-generation features.

Related Questions
Netanya Carmi - PeerSpot reviewer
Content Manager at PeerSpot (formerly IT Central Station)
Nov 1, 2021
Which do you use and why?
See 1 answer
Janet Staver - PeerSpot reviewer
Tech Blogger
Nov 1, 2021
I suggest Fortinet’s FortiEDR over FortiClient for several reasons. For starters, FortiEDR guarantees solid protection because it continually scans servers for emerging vulnerabilities, which gives me peace of mind. FortiEDR can mitigate actions in real time. I also like that I can look into specific events and track the paths the events take as they move through the environment. There are times when I don’t understand the data being shown to me, but when that happens the managed services team is always there to help. They have been super reliable, and are great to work with. Neither solution is perfect, though. One thing I dislike about FortiEDR is that it can be time-consuming to fine-tune what services are scanned and which ones are valid within our environment. And while it is a great product, it is not a product you can independently implement. FortiClient has basic functionality and, upon doing product research, I discovered that the newer versions of the product were faulty and the reason for problems, making its ease of use less desirable. Moreover, if FortiClient scans Outlook for its files and archives, your PC will become unusable because it will eat up all of your PC resources and there is no way to stop it. Another huge problem for me is that it generates loads of false positives which also ends up blocking legitimate applications from running. Before making my decision, I also read that learning the incident exception process is complicated. These disadvantages were enough to sway my decision and ultimately make me choose FortiEDR. ConclusionAs a whole, I have been very pleased using FortiEDR. While there are some areas that can be improved, such as the communication between the managed services team and my own team on site, other than that I have very few complaints.
Netanya Carmi - PeerSpot reviewer
Content Manager at PeerSpot (formerly IT Central Station)
Oct 31, 2021
How does Fortinet FortiClient compare with Open VPN Access Server? Which is the better choice and why?
See 1 answer
Oct 31, 2021
Fortinet FortiClient is a feature-rich solution that is easy to use and deploy without sacrificing safety and security. It has a very fast connection rate and has a built-in VPN. With this solution, you can assign a different VPN or network for each user, once they are authenticated. Fortinet FortiClient is very scalable and easy to use. This is an all-in-one solution with very high throughput. We did find, though, that it was lagging in some authentication tools, especially with the newer versions. Installation can take a very long time. Deployment with Mac devices and even some WIndows based-devices can be problematic. The stability could be improved too - it can be very buggy at times, especially with the EMS. Support could be better too. Open VPN Access Server is easy to set up and use. It is a stable solution that offers multi-authentication and the support is quite good. It is an open-source solution so it is very affordable. While it scales vertically with some difficulty and downtime, it does not scale horizontally. Some of our clients indicated that this solution did not meet all of their security protocols. They could do with better intrusion protection and detection. Conclusion We have a very large, diverse client base and need a solution that provides for excellent scalability and can completely satisfy the numerous different security protocols they all require. Fortinet FortiClient was the best fit for our organization and our clients are very satisfied.
Related Articles
Netanya Carmi - PeerSpot reviewer
Content Manager at PeerSpot (formerly IT Central Station)
Apr 26, 2022
PeerSpot’s popular crowdsourced user review platform helps technology decision-makers around the world to better collaborate with peers and other independent technical experts to provide advice, share knowledge and expertise without vendor bias.Our users have ranked numerous popular solutions according to their valuable features, and have also made suggestions on where they see room for improve...
Related Articles
Netanya Carmi - PeerSpot reviewer
Content Manager at PeerSpot (formerly IT Central Station)
Apr 26, 2022
Top 5 Enterprise Infrastructure VPN Solutions 2022
PeerSpot’s popular crowdsourced user review platform helps technology decision-makers around the ...
Download Free Report
Download our free Fortinet FortiClient Report and get advice and tips from experienced pros sharing their opinions. Updated: November 2022.
DOWNLOAD NOW
654,218 professionals have used our research since 2012.