Currently, I want to add that Fortinet FortiWeb Cloud WAF-as-a-Service is offering only two-factor authentication. I want them to provide SAML authentication. If it gets SAML authentication or something similar, that would be good for us.
Technical Engineer Technical Security at a tech services company with 10,001+ employees
Real User
Top 5
Feb 25, 2026
What I think could be improved in the future is the inclusion of runtime application self-protection, as RASP is currently not part of the program, but it would be beneficial if that could be added into the FortiAP-S Cloud product.
Regarding the automated threat detection feature, I don't have enough information. To measure the success of Fortinet FortiWeb Cloud WAF-as-a-Service's services and reporting capability, there is one drawback. We can only see the denied traffic in the cloud WAF. The allowed traffic is not showing anything. There is room for improvement when it comes to reporting and monitoring. I would like to improve only the reporting in Fortinet FortiWeb Cloud WAF-as-a-Service because most of the features they introduced are good nowadays. They only have to improve the reporting.
General Manager at a manufacturing company with 10,001+ employees
Real User
Top 5
Dec 30, 2025
Better visibility and more intuitive reporting would be helpful for Fortinet FortiWeb Cloud WAF-as-a-Service. Clearer insights from Fortinet FortiWeb Cloud WAF-as-a-Service will make it easier to demonstrate security value to our stakeholders.
Network and Security Engineer (Contractor) at Clymora Technology Limited
Real User
Top 5
Nov 21, 2025
Fortinet FortiWeb Cloud WAF-as-a-Service could be improved with better logging capabilities, as many come with less spacing, necessitating a FortiSIM for enhanced functionality. In addition to logging, I would suggest that Fortinet FortiWeb Cloud WAF-as-a-Service enhance the reporting interface to be more intuitive and user-friendly, with greater customization options tailored to customer needs.
Principal Network Architect at a financial services firm with 201-500 employees
Real User
Top 5
Apr 11, 2025
While we find the solution to be really good overall, some improvements could be made to the alerting system, specifically around the health checks of endpoints. Enhancements to the X header forwarding capabilities would also be beneficial.
Learn what your peers think about Fortinet FortiWeb Cloud WAF-as-a-Service. Get advice and tips from experienced pros sharing their opinions. Updated: March 2026.
Fortinet FortiWeb Cloud WAF-as-a-Service provides cloud-based web application protection, ensuring businesses secure their web apps against threats without hardware management, offering dynamic scalability and threat intelligence. Fortinet FortiWeb Cloud WAF-as-a-Service offers an advanced security platform that effectively protects web applications from cyber threats by leveraging comprehensive threat intelligence and efficient traffic management. Its cloud-native architecture facilitates...
Currently, I want to add that Fortinet FortiWeb Cloud WAF-as-a-Service is offering only two-factor authentication. I want them to provide SAML authentication. If it gets SAML authentication or something similar, that would be good for us.
What I think could be improved in the future is the inclusion of runtime application self-protection, as RASP is currently not part of the program, but it would be beneficial if that could be added into the FortiAP-S Cloud product.
Regarding the automated threat detection feature, I don't have enough information. To measure the success of Fortinet FortiWeb Cloud WAF-as-a-Service's services and reporting capability, there is one drawback. We can only see the denied traffic in the cloud WAF. The allowed traffic is not showing anything. There is room for improvement when it comes to reporting and monitoring. I would like to improve only the reporting in Fortinet FortiWeb Cloud WAF-as-a-Service because most of the features they introduced are good nowadays. They only have to improve the reporting.
Better visibility and more intuitive reporting would be helpful for Fortinet FortiWeb Cloud WAF-as-a-Service. Clearer insights from Fortinet FortiWeb Cloud WAF-as-a-Service will make it easier to demonstrate security value to our stakeholders.
Fortinet FortiWeb Cloud WAF-as-a-Service could be improved with better logging capabilities, as many come with less spacing, necessitating a FortiSIM for enhanced functionality. In addition to logging, I would suggest that Fortinet FortiWeb Cloud WAF-as-a-Service enhance the reporting interface to be more intuitive and user-friendly, with greater customization options tailored to customer needs.
While we find the solution to be really good overall, some improvements could be made to the alerting system, specifically around the health checks of endpoints. Enhancements to the X header forwarding capabilities would also be beneficial.
I do not have any notes on improvement.