Name: FortiAnalyzer
Rating: 8.9 (31 reviews)
Author: Fortinet

Help Desk

Live Chat

Web and Video Conferencing

Customer Support

Academic Advising

Alumni Management

School Management

Education

Business Intelligence (BI)

Collaboration

Desktop Publishing

Enterprise Legal Management

Meeting Management

Workflow

Enterprise

Accounting

Crypto Asset Management

Merger and Acquisition

Finance and Accounting

Applicant Tracking

Corporate Learning Management

HR Management

Payroll

Talent Intelligence

Talent Management

Workforce Analytics

Workforce Management

Human Resources

Cloud Storage

Consulting and Advisory Services

Data Center Virtualization

Fraud Detection

Graph Database

IT Asset Disposal

Infrastructure Capacity Planning

Integration Platform as a Service (iPaaS)

Managed Hosting

Mobile Device Management (MDM)

Network Behavior Analysis

Network Performance Monitoring

Network Traffic Analysis (NTA)

SaaS Management

Security Analytics

Software-Defined WAN

System Monitoring

Unified Endpoint Management (UEM)

Information Technology

A/B Testing

Ad Serving & Retargeting

Affiliate

All-in-One Marketing

App Store Optimization (ASO)

Computer-Assisted Translation

Content Management

Contest Management

Customer Journey Mapping

Digital Asset Management

Email Marketing

Headless CMS

Marketing Automation

Press Release Management

Product Information Management (PIM)

Social Media Management

Survey & Forms Building

Web Analytics

Marketing

Project Management

Professional Services

Call Recording

Customer Communication Management

Customer Relationship Management (CRM)

Quote to Cash

eCommerce Analytics

Sales

Camp Management

Clinical Data Management

Dental

Financial Services CRM

Internet of Medical Things

Loan Servicing

Patient Engagement

Warranty Management

Vertical-Specific

Find top rated software and services based on in-depth reviews from verified users. 400+ software categories including PaaS, NoSQL, BI, HR, and more.

FortiSIEM

Fortinet

FortiManager

Fortinet FortiGate

Cisco Secure Malware Analytics

Cisco

Palo Alto Panorama

Palo Alto Networks

FortiSOAR

Palo Alto Networks WildFire

Splunk Enterprise Security (ES)

Splunk

PRTG Network Monitor

Paessler

Microsoft Sentinel

Microsoft

### Log Management
Users generally appreciate FortiAnalyzer's log management capabilities, highlighting its ability to centralize logs from multiple FortiGate devices, making it easier to monitor and analyze security events across the infrastructure. While some users find the platform user-friendly and efficient for log analysis, others mention occasional challenges in locating specific information within the logs. Despite minor drawbacks, users value FortiAnalyzer for its role in log centralization, incident detection, and response, emphasizing its contribution to streamlined log monitoring and security incident resolution.

### Event Monitoring
Users generally appreciate FortiAnalyzer's robust event monitoring capabilities. The consensus among reviewers is that the event monitoring feature of FortiAnalyzer enhances the overall log management and incident detection process. Users find the ability to centrally store logs from multiple FortiGate devices in FortiAnalyzer particularly beneficial for efficient troubleshooting and debugging. Additionally, the event monitoring functionality provides users with a comprehensive overview of security events across their infrastructure, allowing for better insights and analysis.

### Centralized Monitoring
Users unanimously praise FortiAnalyzer for its centralized log management capabilities, simplifying oversight of multiple FortiGate devices. The centralized monitoring feature of FortiAnalyzer streamlines the process of debugging and troubleshooting issues across the infrastructure, providing a comprehensive view of security events. Additionally, users appreciate the incident detection and response functionality offered by FortiAnalyzer, leveraging centralized monitoring to enhance security measures and automate responses to potential threats. This centralized monitoring aspect of FortiAnalyzer is widely regarded as a valuable asset in maintaining a secure and efficient network environment.

### Traffic Analysis
Users generally find FortiAnalyzer's traffic analysis capabilities to be a standout feature. The ability to monitor and report real-time traffic across Fortinet products, including incoming and outgoing traffic, is highly praised for its convenience and detailed insights. Users appreciate the ease of identifying potential issues, such as blocked traffic due to security profiles or routing problems, and the quick resolution of these issues. Additionally, the software's efficiency in providing comprehensive visibility into Fortinet products, with features like reports and SOC tabs, sets it apart from other vendors in the market. The capability to manage FAZ using CLI and the convenience of viewing traffic, websites, applications, and VPNs from a single interface are highlighted as key strengths. Furthermore, the ease of deployment and configuration of the hardware box, along with the simple process of collecting logs from FortiGate devices, contribute to a positive user experience. The ability to monitor branch firewalls' traffic from the FortiAnalyzer dashboard, export reports, receive mail alerts for malicious incidents, and customize the dashboard for specific information needs are additional functionalities that users appreciate.

### Device Management
Users generally praise FortiAnalyzer for its centralized log management of multiple FortiGate devices, highlighting its efficiency in troubleshooting and providing an overview of security events across the entire infrastructure. While some users appreciate the ease of deploying and configuring the hardware box, as well as the simplicity of collecting logs from FortiGate devices, others express concerns about the limited support for log collection from devices of other vendors and the high price of the physical device or VM. However, recommendations emphasize the added layer of security and ease of device management that FortiAnalyzer brings to telemetry environments, ultimately offering cost-saving benefits and efficient security features.

### Network Security
Users generally agree that FortiAnalyzer's network security capabilities are highly valued. The ability to easily manage infrastructure with multiple FortiGate devices and centralize log management has been praised for streamlining network security operations. Users appreciate the convenience of viewing logs from multiple devices in one place, reducing the time needed to troubleshoot network and security issues. Additionally, the feature that provides overview statistics about security events across the entire infrastructure has been highlighted as a valuable tool for monitoring and analyzing network security performance.

Unpredictable license status and insufficient storage: Some users have expressed frustration with the unpredictable license status of FortiAnalyzer, stating that it requires more storage. They have found it challenging to anticipate when their licenses will expire or need renewal. Additionally, they have mentioned that the current storage capacity is not sufficient for their needs, leading to data management issues.

Lack of documentation for certain functions: Reviewers have pointed out that there is a lack of documentation on configuration and usage for certain functions within FortiAnalyzer. Specifically, functions like Gmail reporting do not have clear instructions or guidelines available. Users find this lack of documentation inconvenient and time-consuming as they try to navigate these features.

Limited deep analysis and user-unfriendly interface: Several users have expressed dissatisfaction with the depth of analysis capabilities offered by FortiAnalyzer. They feel that the tool falls short in providing comprehensive insights and advanced analytics options. Moreover, some users find the interface to be complex and unintuitive, making it difficult to navigate through various functionalities effectively. They suggest improvements in terms of better visualization and user-friendliness to enhance overall usability.

Valuable Log Collection and Insights: Users have found FortiAnalyzer to be a valuable tool for collecting logs from Fortinet products and gaining insights into activities and suspicious events. This feature has been praised by multiple reviewers, highlighting its effectiveness in monitoring abnormal activities.

Wide Range of Customizable Templates: The wide range of customizable templates offered by FortiAnalyzer has been appreciated by users. This feature makes it easy for them to integrate the tool with their business processes, allowing for seamless integration and customization according to specific needs.

User-Friendly Graphical Interface: The graphical interface of FortiAnalyzer has received high praise from users. They consider it as one of the standout features of the tool, appreciating its potential. Its user-friendly design allows effortless viewing of both formatted and normal logs, making it an intuitive experience for users.

FortiAnalyzer has proven to be an invaluable tool for users in various areas of network and security management. With its advanced capabilities, users have been able to easily catch and analyze details of network problems or malicious activities. This enables them to take appropriate action and mitigate risks effectively. Additionally, FortiAnalyzer provides users with the ability to closely monitor internet bandwidth usage, allowing them to identify the responsible users or departments and make necessary adjustments.

Before implementing FortiAnalyzer, users faced challenges such as slow internet speeds and a lack of visibility into network activities. However, since deploying this solution, they have gained significant insights into their network traffic. Users have discovered unauthorized browsing and Windows updates consuming valuable bandwidth resources. The user-friendly interface and comprehensive visibility provided by FortiAnalyzer have been highly appreciated by users for monitoring various types of communication within their networks.

Another problem solved by FortiAnalyzer is the limited log capability of FortiGate firewall. By enhancing log management, this product allows users to overcome log storage limitations and efficiently analyze logs from multiple devices. Additionally, the reporting feature of FortiAnalyzer has proven valuable for tracking sites visited by users and generating detailed reports on user and IP activity.

FortiAnalyzer is especially beneficial for organizations managing multiple Fortigates in their infrastructure. It simplifies log management and analysis across these devices, reducing the time required to debug network and security issues. Users have reported that customizing the dashboard to view selected information is another useful feature of this product.

Moreover, FortiAnalyzer serves as a vital tool for collecting logs from different data sources, supporting security governance tasks, and providing comprehensive security analysis. It has found extensive use in the Network Engineering and Operations department for purposes such as uploading firewall logs to a SEIM, monitoring firewall integrity, compliance and reporting, firewall rules auditing, and enterprise-wide security analysis.

In conclusion, FortiAnalyzer has become an essential asset for organizations seeking improved visibility into their network activities, streamlined log management, and enhanced security analysis. Users appreciate its user-friendly interface, advanced reporting capabilities, and the efficiency it brings to their network and security management tasks.

As part of the Fortinet Security Fabric, FortiAnalyzer provides security fabric analytics and automation to provide better detection and response against cyber risks.

EclecticIQ Platform on-premise

EclecticIQ Platform hybrid

EclecticIQ Platform hosted

EclecticIQ Platform

Since 2004, Mandiant has been a partner to security-conscious organizations. Mandiant’s approach helps organizations develop more effective and efficient cyber security programs and instills confidence in their readiness to defend against and respond to cyber threats.

Standard

Premium

Mandiant Advantage Automated Defense

FortiAnalyzer

Fortinet FortiAnalyzer Ver 3.0 Product Demo

Likelihood to Recommend

Usability

IBM Security QRadar SIEM

Cisco Application Centric Infrastructure (Cisco ACI)

SolarWinds NetFlow Traffic Analyzer (NTA)

Cisco 3504 WLAN Controller

ManageEngine NetFlow Analyzer

Centric

McAfee DLP Endpoint

FortiAnalyzer 2023-12-21 05:55:11

Splunk Enterprise

AlgoSec

Tufin Orchestration Suite

Senior Network Architect

FortiAnalyzer 2021-09-01 14:44:11

TrustRadius is a technology and business research firm based in Austin, Texas. The company is known as a review platform for verified B2B technology and software reviews through a proprietary algorithm and human verification.

TrustRadius

Difficult to maintain

Workflow automation

Event correlation

Real time

Compliance reporting

Security tools

Home

Security Analytics Software

We primarily leverage FortiAnalyzer for comprehensive monitoring of both inbound and outbound internet and intranet traffic through our perimeter firewall. This product provides us with a customized dashboard tailored to our specific use cases. Additionally, it plays a crucial role in generating monthly executive summary reports for management, offering insights into internet usage across the organization and individual users.

Custom dashboard
VPN traffic monitoring
Internet traffic monitoring
Users behavior analysis
Integrate well with the FortiGate firewall
Log analysis

In-depth user behavior analysis
Better UI/UX dashboard
Better integration with other product than FortiGate

We are able to report to the management the real-time attacks on the network
User behavior analysis has become easy
Achieving a favorable return on investment (ROI) is easily attainable, given that the product cost is relatively moderate. Without the product, the amount of human work time required is significantly higher, further emphasizing the cost-effectiveness of its implementation.

IBM Security QRadar SIEM, SolarWinds NetFlow Traffic Analyzer (NTA) and ManageEngine NetFlow Analyzer

Cisco 3504 WLAN Controller, Cisco Application Centric Infrastructure (Cisco ACI), Fortinet FortiGate, McAfee DLP Endpoint

FortiAnalyzer is used by the Network Engineering and Operations department to 1) upload firewall logs to a SEIM, 2) as a surveillance tool to monitor the integrity of multiple firewalls across the enterprise, 3) Compliance and reporting engine, 4) Firewall rules auditor, 5) comprehensive enterprise wide security analysis and other Security Governance tasks.

Event correlation
Real-time detection
Compliance Reporting
Security Tools orchestration
Security workflow automation
Integration with ServiceNOW
Centralized NOC/SOC visibility

Administrative Domains and Software Versions are difficult to maintain
managing different FortiOS versions gets complicated quite easily
Administrative Domains must be well architected from the beginning

log aggregation
multi firewall visibility
analysis of enterprise security landscape
easy to deploy

we were able to retire 3 legacy security tools in favor of FortiAnalyzer
Automate 155 security tasks and reporting
one click compliance reporting for PCI-DSS
Enterprise security governance
Visualize the security landscape
Eliminate and or prune unnecessary rules
Tune overly permissive rules for tighter security

Tufin Orchestration Suite and Splunk Enterprise Security (SIEM)

Tufin Orchestration Suite, Splunk Enterprise Security (SIEM), AlgoSec

The FortiAnalyzer instance was deployed straight into the AZURE platform as a service endpoint for all firewalls deployed in AZURE regions and physical datacenters across the globe providing security analytics immediately for the enterprise. A FortiAnalyzer Federation deployment architecture would have been better to start in our scenario as we quickly out grew the single cluster.

Compliance Reporting
Real-time detection
Event correlation
Enterprise FortiGate Firewall Management

Setting up Administrative Domains
Managing multiple FW versions become clunky and complicated
Choice of physical or virtual appliance or cloud instance

FortiAnalyzer

Overview

What is FortiAnalyzer?