Cisco Defense Orchestrator helps the user consistently manage policies across Cisco security products. It is a cloud-based application that cuts through complexity to save time and keep your organization protected against the latest threats.
N/A
FortiManager
Score 8.0 out of 10
N/A
FortiManager delivers unified management for consistent security across complex hybrid environments, providing protection against security threats. Key benefits include accelerated zero-touch provisioning with best-practice templates for deployment at scale of SD-WAN and streamlined workflows between the Fortinet Security Fabric and integrations with 500+ ecosystem partners.
Cisco Defense Orchestrator is an ideal software to easily manage firewalls at the enterprise level, as well as to implement security policies that allow the corporate infrastructure to remain free of threats that can put at risk all the devices that are handled on a daily basis. For example, it is ideal for preventing network intrusions, since it has the ability to block malware and any suspicious activity. In addition, the fact that it is based on a single console provides the benefit of keeping all devices under view and thus preventing any threat in the simplest way.
FortiManager is well suited for larger organizations which require unified configurations and IT departments that need quick turn around on firewall related tickets. I believe MSPs can also benefit with the use of the VDOM feature, if strict separation between clients is needed. FortiManager wouldn't be ideal for 1-3 site operations, unless their configurations are extremely complex or have a high number of active users.
Various bugs: The software is buggy, and if you don't have a good understanding of it's underlaying operation, you can get confused or stuck when pushing a configuration. There are lots of little quirks you will have to learn, which are not described in any documentation.
Conflict resolution: Occasionally, during larger changes, bringing new devices in, pushing a config will fail due to dependencies, conflicts, or other software bugs. This is somewhat time consuming because the error messages provided aren't descriptive
CLI Options: Some configuration changes require creating scripts that execute on each device, and can't be done via the GUI
I give this score because I believe that Cisco Defense Orchestrator helps our company to be resilient, this is because this software is also focused on offering security resilience at the enterprise level, that is, through its features such as high visibility, acceleration of threat detection and response, simple management, and end-to-end protection. By having it, it is more feasible to avoid disasters or risks in the devices that are handled daily and of course avoid data loss and, given this, be able to recover quickly if something happens.
I believe that Cisco Defense Orchestrator is available when needed, this solution has allowed the security team to have better productivity thanks to the fact that their workflow is less intense because they can carry out their tasks with the help of this software, in addition to the presence If there is an error, they can be overcome quickly because their support team is efficient.
Cisco Defense Orchestrator is a software that is easy to implement, although knowledge is required for it, but if you do not have it, going to its valuable support team is very helpful. If done knowingly, this process can take less than two hours. Having a simple implementation is a valuable feature because it saves time and expense.
We used the on box management platform. This required API usage for automating things. It was not scalable and a lot of features are not there. There are platforms like manage engine, but they are not Cisco FP native and had limitations as well.
FortiManager is the best choice for managing numerous FortiGate firewalls. It allows for easy integration into ServiceNow and automates simple repetitive tasks that are very straightforward. Role-based access control is easy to enable and you can get quite granular with user permissions. Administrative Domains help segregate firewall management and compliance within the FortiManager console, by almost any classification method that makes sense to your organization.