2020-04-28T08:50:00Z

What needs improvement with Fortinet FortiEDR?

Julia Miller - PeerSpot reviewer
  • 0
  • 96
PeerSpot user
21

21 Answers

Ravindu Ariyawardhana - PeerSpot reviewer
Real User
Top 10
2024-02-13T09:57:15Z
Feb 13, 2024

Right now, my company focuses on the on-premises version of the product since the cloud competencies offered by the tool are comparatively a bit less. I think cloud security and SASE are areas of concern in the product where improvements are required. The tool's cloud version has to be improved in terms of the security it offers.

Search for a product comparison
Omar Urquijo - PeerSpot reviewer
Real User
Top 10
2023-10-03T19:39:00Z
Oct 3, 2023

We've encountered challenges during API deployment, occasionally resulting in unstable environments. Deployment can be a bit tricky at times. In terms of pricing, EDR tends to be more costly than FortiClient. In some cases, we opt for FortiClient because clients may not have the resources or time to invest in EDR.

JN
Real User
2023-09-19T14:19:54Z
Sep 19, 2023

I haven't seen the use of AI in the solution. In the future, I am interested to see the use of AI in Fortinet FortiEDR.

ChristianBenjamin - PeerSpot reviewer
Reseller
Top 5
2023-08-23T15:00:13Z
Aug 23, 2023

The solution's installation from a central installation server could be improved because the engineers had a little bit of trouble getting it installed from a central location.

MS
Real User
Top 5
2023-07-14T11:12:00Z
Jul 14, 2023

Our problem with the EDR platform is that another company manages it. We don't manage it. We give them the infrastructure, and they give us the information in return as a service. Once, we had an event that was locked and blocked, but information about it came to us two or three days later. That isn't the way it should be. We see blocked functions and events but don't get information about them. You ask why something doesn't work before checking and seeing that EDR has blocked an event, but why is it blocked? This information is not accessible by our company as we are customers. We want a solution that works in our network and only in our network. We have to have all the information, such as what happened, when it happened, and why it happened, and that information should be provided at the moment, not two days later.

Leslie Wilson - PeerSpot reviewer
Real User
Top 10
2023-05-22T12:28:00Z
May 22, 2023

The EDR console should have more extensive reporting. You shouldn't need to purchase FortiAnalyzer. It should be included in the EDR part. The security adviser cloud platform could be improved with more options for exclusive or intensive rules for devices.

Learn what your peers think about Fortinet FortiEDR. Get advice and tips from experienced pros sharing their opinions. Updated: March 2024.
765,234 professionals have used our research since 2012.
PN
Real User
Top 20
2023-05-01T11:56:00Z
May 1, 2023

Integration with Azure and SaaS provisioning tools could improve Fortinet FortiEDR.

AE
Real User
Top 20
2023-05-01T11:56:00Z
May 1, 2023

To improve Fortinet, we need to see more features and technology areas at the endpoint level introduced.

Tintin Rahman - PeerSpot reviewer
Real User
Top 20
2023-05-01T11:53:00Z
May 1, 2023

FortiEDR can be improved by providing more detailed reporting.

SP
MSP
Top 20
2023-05-01T11:53:00Z
May 1, 2023

ZTNA can improve latency. I believe that a lot of the focus is on SD-WAN.

LV
Consultant
Top 20
2023-03-09T22:00:01Z
Mar 9, 2023

I've never tried the solution in mixed environments. I'm not sure if it would work well in an environment with Palo Alto or Cisco. The support needs improvement. It is not a good product for smaller organizations or organizations under 500 endpoints. Having a fully integrated team would be nice. Recently, we had to use a third-party team.

EricLo - PeerSpot reviewer
Real User
Top 5
2023-03-09T21:58:16Z
Mar 9, 2023

The stability could be better. The scalability could be improved a bit. We find the solution to be a bit expensive.

RW
Real User
Top 5Leaderboard
2023-02-13T20:29:46Z
Feb 13, 2023

When the Fortinet FortiEDR is enabled sometimes our applications stop. The solution causes our applications to crash. There is room for better integration to prevent stability. The exception handling for the on-prem version has a cap compared to the cloud version and can be improved.

Chaitanya Potdar - PeerSpot reviewer
Real User
Top 20
2023-01-24T13:16:31Z
Jan 24, 2023

FortiEDR could add a separate scanning dashboard. In incident management, we prefer to remove the endpoint system from the environment and scan the system. We typically use Symantec for that, but if we want to use FortiEDR for that, then we need a scanning tab to clarify things. If I'm scanning assets from the backend, I should be able to tell from my end if any malicious files were installed onto the server. It may be any server like Windows Server or the operating system for an endpoint laptop or desktop.

SM
Real User
Top 20
2022-10-20T14:07:16Z
Oct 20, 2022

We'd like to be able to put this on our mobile devices and make secure connections to our network. It would be great if we could bring this product in a single MDM application for mobiles, Androids, and for IOSs. It's complicated to administer so I'd like one application for all these things.

SG
Reseller
2021-11-30T20:56:00Z
Nov 30, 2021

In terms of what could be improved, I would say everything with Fortinet having to do with their cloud services. They need to invest more in their internal infrastructure that they are running in the cloud. One of the things I find with their cloud environment compared to others' is that they go cheap on the equipment. So it causes some performance degradation. A classic example of that would be products like FortiMail where you're basically acting as a mail relay. So say you're on a support call and I'm sending you a mail with document that you expect to come to you immediately, or within 30 - 60 seconds, could take up to 45 minutes because of the load on the cloud services. This can result in trouble tickets and other customer side issue. In the next release I would like to see more investment in their cloud services. Additionally, they definitely need better integration into their FortiSIEM and FortiSOAR solutions. They should continue to improve that and possibly include a managed threat hunting feature, an MDR solution.

RN
Real User
2021-08-26T21:19:59Z
Aug 26, 2021

Comparatively, it works fine, but the amount of usage, the number of details we get, or the number of options that can be tweaked is limited in comparison to that with other EDR solutions. The ability to make certain changes or investigate is also limited. Also, the investigation and the details, which I would get when I'm looking into it, and the ways I could configure or white list or black list a few things are also limited. It is not up to an extent where it can give me granular options to do that.

DV
Real User
2021-04-23T20:09:13Z
Apr 23, 2021

The SIEM could be improved. I would have liked to see that you could access the same SIEM or Fortinet EDR dashboard from the same login, but I heard that they were different, which was a bit of a letdown.

it_user1430793 - PeerSpot reviewer
Real User
2020-10-04T06:40:25Z
Oct 4, 2020

Detections could definitely be improved. It's still detecting some things that it shouldn't be like Microsoft Intune and 365 devices as well. I'd like to see an improvement in the reporting. There are currently no reporting capabilities so I would definitely want to see that.

HS
Real User
2020-08-26T07:13:21Z
Aug 26, 2020

They can include the automation for the realtime updates. We have a network infrastructure with remote sites. Whenever they send updates, they are not automated. We have to go into the console and push those updates. I wish it was more automated. The update file is currently around 31 MB. It could be smaller.

ChandanMunshi - PeerSpot reviewer
Real User
Top 5
2020-04-28T08:50:00Z
Apr 28, 2020

Clients want to be in a hybrid mix and match mode. The security needs to be relevant in that way as well. It has to be online, on the cloud and on-premises. This is the customer's mindset. They don't want to go for user applications on the cloud. They think it will fail and the data will be inaccessible. They don't want to go to the cloud platform. The security should be strong for the cloud. Some applications are on-prem and some are on the cloud. Fortinet should also have strong security for the cloud. There should be more security for the cloud.

Fortinet FortiEDR is a real-time endpoint protection, detection, and automated response solution. Its primary purpose is to detect advanced threats to stop breaches and ransomware damage. It is designed to do so in real time, even on an already compromised device, allowing you to respond and remediate incidents automatically so your data can remain protected. Fortinet FortiEDR Features Fortinet FortiEDR has many valuable key features, including: Easily customizable Real-time proactive risk...
Download Fortinet FortiEDR ReportRead more