Fortinet FortiAnalyzer Reviews

I use Fortinet FortiAnalyzer for log storage, log analytics, and generating reports. It also acts as a syslog server as well as a SIEM and SOAR solution. It is integrated with Fortinet solutions like FortiGate, FortiClient, FortiMail, and FortiWeb.

The most valuable features of Fortinet FortiAnalyzer include its capability to act as a syslog server, its SIEM and SOAR capabilities with limited playbooks, and its integration with Fortinet solutions ensures ease of use for users with a Fortinet infrastructure. The device's pricing model also offers good value for money.

The log view for syslog in Fortinet FortiAnalyzer could be improved. A more comprehensive dashboard for syslog would enhance its value.

I have been working with Fortinet FortiAnalyzer for about five years.

I would rate the stability of Fortinet FortiAnalyzer as eight or nine out of ten. It provides a reliable solution for managing network-wide data.

The scalability of Fortinet FortiAnalyzer is excellent at a rating of ten out of ten. As a virtual machine or cloud-based solution, it scales efficiently to meet organizational needs.

The customer service and support from Fortinet are rated as eight out of ten. The support quality sometimes varies due to regional support issues, leading to longer response times.

Positive

Before using Fortinet FortiAnalyzer, I was using QRadar. I switched because QRadar was expensive.

The initial setup of Fortinet FortiAnalyzer is straightforward. It can be deployed on hardware or as a virtual machine, making it simple to execute.

I have seen a return on investment with Fortinet FortiAnalyzer due to its competitive pricing and straightforward licensing model based on the amount of log data processed per day.

Fortinet FortiAnalyzer offers competitive pricing. Its licensing model is based on the amount of log data processed per day, making it more cost-effective compared to QRadar, which is EPS and device-based.

I recommend Fortinet FortiAnalyzer to those who have other Fortinet solutions. It integrates well with Fortinet systems. However, for an organization with no Fortinet solutions, a dedicated SIEM might be better. Overall, I would rate Fortinet FortiAnalyzer eight out of ten.

On-premises

Other

We are using Fortinet FortiAnalyzer mainly for reporting and troubleshooting purposes, specifically for log analyzing and threat voting.

The reporting and organizing part of Fortinet FortiAnalyzer is very interactive, smooth, and easy to use. The log management is useful as we have connected around two hundred eighty-five walls and around fifteen to twenty plus firewalls with Fortinet FortiAnalyzer, making it highly beneficial compared to logging into each individual firewall.

In the reporting area, some tasks have to be done manually for advanced-level reports, which require customization. Despite this, I appreciate the advanced features available and do not currently see other areas for improvement.

I have used Fortinet FortiAnalyzer for over eight years.

The deployment of Fortinet FortiAnalyzer was easy and smooth.

Fortinet FortiAnalyzer is stable, and I would rate its stability as nine out of ten.

Fortinet FortiAnalyzer is scalable. We are planning to increase the number of firewalls and platforms.

I am satisfied with Fortinet's technical support. They are effective, and I have no complaints about their service.

Neutral

I did not use any other product of a similar kind before Fortinet FortiAnalyzer.

The initial setup of Fortinet FortiAnalyzer was straightforward. The installation and initial configuration took about one hour.

Only I was involved in the deployment process.

For smaller SMB-level firewalls, Fortinet FortiAnalyzer might not be the best idea for cost-effective implementation. It is better to use FortiAnalyzer FortiCloud's basic features. For firewalls above the ninety-one hundred series, Fortinet FortiAnalyzer is recommended.

In the future updates, more graphical views could be beneficial, although the current graphical interface is satisfactory. Overall, I would rate Fortinet FortiAnalyzer an eight out of ten.

On-premises

We use FortiAnalyzer for network security operations, primarily to integrate it with FortiGate firewall and Palo Alto for our firewall operations. FortiAnalyzer provides a very suitable solution for FortiGate firewall since they come from the same vendor, so the integration is very strong.

The most valuable feature of FortiAnalyzer is its visibility, especially in network investigations. When incidents occur in our network, we need to investigate these issues, and FortiAnalyzer provides very strong insights and visibility for troubleshooting and investigation. 

The solution helps in correlating logs centrally, which is beneficial for customers with multiple branches. It is also very suitable for FortiGate firewall operations, and the integration with other Fortinet solutions is strong.

A possible improvement for FortiAnalyzer could be in threat intelligence. This feature might be enhanced to provide better insights and more efficient operations.

I have been working with FortiAnalyzer for almost 15 years.

The solution is very stable. I would rate its stability as a nine out of ten.

FortiAnalyzer is a scalable product. I would rate its scalability as a nine out of ten.

FortiAnalyzer has a very responsive technical support team. They are very good and provide excellent assistance.

Positive

I have used other firewalls such as Citrix NetScaler and Palo Alto. The choice to use FortiAnalyzer was primarily because of the strong integration it offers with FortiGate firewall, due to the same vendor relationship.

The initial setup of FortiAnalyzer was easy. The configuration involved setting up an IP address and integrating with the FortiGate firewall.

I set up FortiAnalyzer by myself. We have a team of five engineers who maintain all data center infrastructures.

By choosing Fortinet's security fabric solutions, we can receive discounts from the vendor, which effectively reduces costs.

In terms of pricing, FortiAnalyzer is not expensive. 

I would rate the pricing as an eight out of ten.

I have worked with Citrix NetScaler ADC and Fortinet's FortiADC, however, FortiAnalyzer was chosen for its strong integration with FortiGate firewalls.

I strongly recommend FortiAnalyzer for users who are already using other Fortinet solutions. 

Overall, I rate FortiAnalyzer as a nine out of ten.

On-premises

I deployed FortiAnalyzer in three projects. I configured it to manage approximately 50 Fortinet devices.

My job was to add new FortiGates and to analyze data on FortiAnalyzer. The system provides valuable insights through information, graphics, and reports. FortiAnalyzer allows easy configuration of routing status protocols, IP interfaces, and DNS settings. Its operation system makes it easier than using Cisco's iOS.

Sometimes, there is a problem with CPU consumption, where one process consumes 100%, and I need to restart FortiAnalyzer to fix this. I am not familiar with the processes of scalability.

I have used Fortinet Solutions for about three to five years.

The version I used was 7.4.2. We faced some CPU consumption issues, which caused the machine to slow down and required a restart of FortiAnalyzer. However, this issue was addressed in later versions.

Sometimes, I need to consult FortinetDocs to understand integration. It is not very easy.

Positive

The initial setup is straightforward and more straightforward than Cisco. It is easy when equipped with the necessary information like device name, IP address, and SNMP configurations.

The impact of the tool is low when the functionalities are inaccessible due to resource consumption. When operations run smoothly, FortiAnalyzer delivers efficiency yet does not significantly impact costs.

I am a technical engineer, so I am not privy to pricing details.

I recommend FortiAnalyzer to companies that have two or more FortiGates for easier report generation and to execute actions through Playbooks.

I'd rate the solution nine out of ten.

I use Fortinet FortiAnalyzer for data analysis and security purposes. It is also used for analyzing logs and services.

The dashboard of Fortinet FortiAnalyzer is outstanding with very detailed information. Its services are highly efficient when analyzing logs and services. Users provide feedback that they are highly satisfied with the log analysis and high security for their network. Fortinet FortiAnalyzer also has impressive threat detection capabilities.

I do not have recommendations for Fortinet FortiAnalyzer itself, but the support services need improvement. The support engineers are very slow and incompetent. They are undisciplined when we try to contact them, which is disappointing for us and our clients.

I have been working with Fortinet FortiAnalyzer for around six months.

I give Fortinet FortiAnalyzer a stability rating of ten out of ten as I use it extensively.

Fortinet FortiAnalyzer is a scalable product, and I rate it a nine out of ten for scalability.

The support service is very slow and incompetent. The support engineers lack discipline, and both we and our clients experience disappointment with their service.

Negative

The configuration process for Fortinet FortiAnalyzer took around two and a half days. It is a complex procedure and could be made easier.

Two people, including myself and a colleague, took part in the installation.

Clients achieve cost efficiencies when using Fortinet FortiAnalyzer compared to third-party log analyzers, which are significantly more expensive.

For the overall rating, I would give Fortinet FortiAnalyzer a seven out of ten. The reasons for not rating it higher include issues with support and some concerns with FortiGate.

Public Cloud

The primary use case for Fortinet FortiAnalyzer is for analyzing and reviewing logs for every device related to Fortinet.

The most valuable feature of Fortinet FortiAnalyzer is its ability to report for several management tasks in a very short time. This allows for quick analysis and report generation for executives, saving time. Additionally, its incident response is considered decent, and its ease of setup and integration with Fortinet devices centralizes logs in one place.

In the next version, automation analysis should be enhanced.

I have used Fortinet FortiAnalyzer for two and a half years.

The deployment of Fortinet FortiAnalyzer depends on the environment. If it is a small environment, it takes one day with full implementation and integration with every device. A larger environment might take two or three days.

I rate the stability of the solution at nine out of ten.

I rate the scalability of the solution as eight out of ten.

I rate the technical support from Fortinet as eight out of ten.

Positive

I did not use a different solution prior to Fortinet FortiAnalyzer.

The initial setup of Fortinet FortiAnalyzer is very easy.

The price of the solution is fair, although I do not remember the exact price.

Based on my experience, I would recommend Fortinet FortiAnalyzer to small companies as it is easy to use and centralizes logs in one place, saving time. There are also options related to IOC and automation, as well as SOAR, which help small environments. Overall, I rate the solution as eight out of ten.

On-premises

I saw some projects where clients use Fortinet now. They have Fortinet in their LAN, so they need to continue to have this solution. It is very difficult to change. We know that IT managers do not want to change anything. They just make it better with what they have now, not to change. For Fortinet, the solution that I used most recently is Fortinet FortiAnalyzer and FortiManager.

For us in Latin America, the best features of Fortinet FortiAnalyzer are the solutions that combine SD-WAN and security in the same box. I think that is what differentiates Fortinet from the others. Almost every manufacturer has a similar structure for monitoring and collecting logs. To have all the information about clients, networks, or security information, you typically need two platforms.

We use the information from Fortinet FortiAnalyzer to show our clients and provide consultancy for them. We advise them, 'You need to make an action plan for this problem,' or help them understand the vulnerabilities of the security and create an action plan for better security practices.

Fortinet FortiAnalyzer is good for that, but we need to have a team that knows about the information that is collected. You need to know the platform.

When I had contact with FortiManager and Fortinet FortiAnalyzer, it was not so easy, but with some reading or training on the platform, it becomes easy to use.

I would rate Fortinet's customer service a nine, on a scale of 1 to 10.

Positive

The initial setup for Fortinet FortiAnalyzer is easy. It is not so difficult. You need to have some training, but it is okay.

In the past, I did research to know different SIEM solutions because it is very common; each company has its own SIEM. Cisco has its own SIEM, so they work very well with their Cisco ecosystem. But we have clients with heterogeneous solutions, and we try to look for a SIEM solution that is universal. You can use Cisco, Huawei, or Aruba, and the SIEM solution can integrate and work with any kind of solution. I also saw something about IBM.

Fortinet FortiAnalyzer integrates with SIEM, but I do not know about the integration with other kinds of solutions.

I am a user of HPE and not a partner yet. We are a partner with Huawei.

I was in presales, so I know Zabbix and Grafana. We know how it works, but we do not have the responsibility to set up the solution. I communicate to our clients that we have the solutions of Zabbix and Grafana, and it is possible for them to see the information of the LAN, the WLAN, and the link.

Here where I am working now, we use the solution of XDR and NDR from Trend Micro. Our security business unit has a lot of experience selling Trend Micro XDR or NDR solutions in Brazil. The Trend Micro solution I am mentioning is Trend Vision One. They sell solutions to a big energy company in Brazil.

We show the reports to clients to let them know about their problems and compliance with their security policies.

Fortinet is very common for security, and everybody knows them. We have different kinds of companies. Those that lead for technology do not worry a lot about using it, as they have money for investment in technology. The other ones that do not have a lot of money almost do not know about the technology. So we have to show them that something this exists and try to make the projects according to their budget. That is our challenge here.

I rate Fortinet FortiAnalyzer an eight out of ten.

On-premises

Amazon Web Services (AWS)

Fortinet FortiAnalyzer is used for vulnerabilities with cyber attacks.

The clients are in different industries, including private sectors such as retail, industry, healthcare, financial, banks, and others. There are no government clients.

For clients in banking, financial, and retail sectors, Fortinet FortiAnalyzer prepares them for attacks and helps prevent security incidents.

The predictive analytics of Fortinet FortiAnalyzer is very valuable for clients because this solution has a complete architecture for cybersecurity.

The ability to create custom reports and dashboards has helped improve understanding and provided clients with better cybersecurity solutions through the analyzer.

The integration of Fortinet FortiAnalyzer with SIEM solutions and other security solutions is very important because client solutions are not heterogeneous. Clients typically have multiple solution providers, making communication between all systems crucial.

Fortinet FortiAnalyzer can become even better with integration with other product providers and solution providers.

I have five years of experience with Fortinet FortiAnalyzer.

The solution is stable.

The solution is scalable.

The customer service and technical support with Fortinet is very good. I have experience with two different client service models: on-premise solutions and MSP services on a monthly basis. On a scale from 1 to 10, I would rate it as nine.

Some clients did move to Fortinet from other solutions before, and they have had good experiences with the solution.

The initial setup is not complex; it is straightforward.

The return on investment is very good, and the price-performance ratio is excellent. On a scale of 1 to 10, I would rate their return on investment as eight.

I have experience with pricing, licensing, and setup costs as I prepare quotes for clients. While Fortinet FortiAnalyzer might be more expensive than some other solutions, it remains very competitive in the market.

I do not know the main differences between Fortinet and Cisco or Fortinet and Palo Alto.

I have experience with Fortinet solutions and am familiar with FortiReporter, FortiManager, and Fortinet FortiAnalyzer.

I sell FortiGate but work only in commercial roles. My clients do not use Fortinet FortiAnalyzer with AWS, though I work with various cloud providers including AWS, Google, Azure, Huawei, and IBM for cloud solutions, both private and public.

The solution is very important for clients to complete their architecture in cybersecurity. Clients need the cyber analyzer and reporting analyzer to complete their security posture.

Overall rating: 9 out of 10.