2020-04-28T08:50:00Z
it_user434868 - PeerSpot reviewer
Senior Director of Delivery at a tech services company with 51-200 employees
  • 0
  • 44

What needs improvement with Fortinet FortiEDR?

Please share with the community what you think needs improvement with Fortinet FortiEDR.

What are its weaknesses? What would you like to see changed in a future version?

7
PeerSpot user
7 Answers
SM
System Admin at Kuratorium Wiener Pensionisten-Wohnhäuser
Real User
Top 20
2022-10-20T14:07:16Z
Oct 20, 2022

We'd like to be able to put this on our mobile devices and make secure connections to our network. It would be great if we could bring this product in a single MDM application for mobiles, Androids, and for IOSs. It's complicated to administer so I'd like one application for all these things.

Search for a product comparison
SG
Owner at a security firm with 1-10 employees
Reseller
Top 10
2021-11-30T20:56:00Z
Nov 30, 2021

In terms of what could be improved, I would say everything with Fortinet having to do with their cloud services. They need to invest more in their internal infrastructure that they are running in the cloud. One of the things I find with their cloud environment compared to others' is that they go cheap on the equipment. So it causes some performance degradation. A classic example of that would be products like FortiMail where you're basically acting as a mail relay. So say you're on a support call and I'm sending you a mail with document that you expect to come to you immediately, or within 30 - 60 seconds, could take up to 45 minutes because of the load on the cloud services. This can result in trouble tickets and other customer side issue. In the next release I would like to see more investment in their cloud services. Additionally, they definitely need better integration into their FortiSIEM and FortiSOAR solutions. They should continue to improve that and possibly include a managed threat hunting feature, an MDR solution.

RakeshNaganna - PeerSpot reviewer
Cyber Security Analyst at a retailer with 1,001-5,000 employees
Real User
Top 5
2021-08-26T21:19:59Z
Aug 26, 2021

Comparatively, it works fine, but the amount of usage, the number of details we get, or the number of options that can be tweaked is limited in comparison to that with other EDR solutions. The ability to make certain changes or investigate is also limited. Also, the investigation and the details, which I would get when I'm looking into it, and the ways I could configure or white list or black list a few things are also limited. It is not up to an extent where it can give me granular options to do that.

DV
Senior Network Administrator at a financial services firm with 51-200 employees
Real User
Top 5
2021-04-23T20:09:13Z
Apr 23, 2021

The SIEM could be improved. I would have liked to see that you could access the same SIEM or Fortinet EDR dashboard from the same login, but I heard that they were different, which was a bit of a letdown.

MK
Security Analyst at a tech services company with 11-50 employees
Real User
2020-10-04T06:40:25Z
Oct 4, 2020

Detections could definitely be improved. It's still detecting some things that it shouldn't be like Microsoft Intune and 365 devices as well. I'd like to see an improvement in the reporting. There are currently no reporting capabilities so I would definitely want to see that.

HarpreetSingh2 - PeerSpot reviewer
Information Technology Support Specialist at Chemtrade Logistics
Real User
2020-08-26T07:13:21Z
Aug 26, 2020

They can include the automation for the realtime updates. We have a network infrastructure with remote sites. Whenever they send updates, they are not automated. We have to go into the console and push those updates. I wish it was more automated. The update file is currently around 31 MB. It could be smaller.

Find out what your peers are saying about Fortinet, SentinelOne, CrowdStrike and others in EDR (Endpoint Detection and Response). Updated: November 2022.
656,862 professionals have used our research since 2012.
ChandanMunshi - PeerSpot reviewer
Chief Technical Officer at Provision Technologies LLP
Real User
Top 5
2020-04-28T08:50:00Z
Apr 28, 2020

Clients want to be in a hybrid mix and match mode. The security needs to be relevant in that way as well. It has to be online, on the cloud and on-premises. This is the customer's mindset. They don't want to go for user applications on the cloud. They think it will fail and the data will be inaccessible. They don't want to go to the cloud platform. The security should be strong for the cloud. Some applications are on-prem and some are on the cloud. Fortinet should also have strong security for the cloud. There should be more security for the cloud.

Related Questions
Netanya Carmi - PeerSpot reviewer
Content Manager at PeerSpot (formerly IT Central Station)
Nov 1, 2021
Which do you use and why?
See 1 answer
Janet Staver - PeerSpot reviewer
Tech Blogger
Nov 1, 2021
I suggest Fortinet’s FortiEDR over FortiClient for several reasons. For starters, FortiEDR guarantees solid protection because it continually scans servers for emerging vulnerabilities, which gives me peace of mind. FortiEDR can mitigate actions in real time. I also like that I can look into specific events and track the paths the events take as they move through the environment. There are times when I don’t understand the data being shown to me, but when that happens the managed services team is always there to help. They have been super reliable, and are great to work with. Neither solution is perfect, though. One thing I dislike about FortiEDR is that it can be time-consuming to fine-tune what services are scanned and which ones are valid within our environment. And while it is a great product, it is not a product you can independently implement. FortiClient has basic functionality and, upon doing product research, I discovered that the newer versions of the product were faulty and the reason for problems, making its ease of use less desirable. Moreover, if FortiClient scans Outlook for its files and archives, your PC will become unusable because it will eat up all of your PC resources and there is no way to stop it. Another huge problem for me is that it generates loads of false positives which also ends up blocking legitimate applications from running. Before making my decision, I also read that learning the incident exception process is complicated. These disadvantages were enough to sway my decision and ultimately make me choose FortiEDR. ConclusionAs a whole, I have been very pleased using FortiEDR. While there are some areas that can be improved, such as the communication between the managed services team and my own team on site, other than that I have very few complaints.
ML
Systems Engineer at Fortinet
Jul 30, 2021
Hi, I'm looking for a comparison between these 2 products: CrowdStrike Falcon and Fortinet FortiEDR. In addition, business cases and customer testimonials will be a plus.  Can anyone assist with this information? Thank you.
See 1 answer
Evgeny Belenky - PeerSpot reviewer
Director of Community at PeerSpot (formerly IT Central Station)
Jul 30, 2021
Hi @Thomas Zeulner, @Stephen Hand, @Jim McCartney, @Tom Smolinsky, @DeAndre Valentine , @ChandanMunshi ​and @HarpreetSingh2​. Can you please assist @Michael LeBron ​with your professional insights? Thank you!
Download Free Report
Download our free EDR (Endpoint Detection and Response) Report and find out what your peers are saying about Fortinet, SentinelOne, CrowdStrike, and more! Updated: November 2022.
DOWNLOAD NOW
656,862 professionals have used our research since 2012.