FortiXDR vs Microsoft Defender XDR comparison

"The most valuable feature of FortiXDR is it integrates well with other Fortinet solutions, such as Fortinet firewall, FortiMail, FortiSandbox, Forti Fabric, switches, and access points. Whatever the flow of the traffic comes in or goes out, the entire traffic can be managed and monitored properly."

"FortiXDR is valuable for its integration capabilities with one hundred percent compatibility with other vendors in cloud environments like Google, Oracle, and Microsoft."

"Our customers are satisfied with FortiXDR."

"FortiXDR is valuable for its integration capabilities with one hundred percent compatibility with other vendors in cloud environments like Google, Oracle, and Microsoft."

"The most valuable feature of FortiXDR is its ability to block clients, providing comprehensive endpoint protection."

"The product is stable enough."

"The most valuable feature of FortiXDR is its ability to block clients, providing comprehensive endpoint protection."

"It has great stability."

"I like that it's stable. It's been stable for a long time, and Microsoft Defender has done a good job there."

"As a reseller and partner, the advantages of Microsoft Defender XDR are numerous; I have stopped many threats for many organizations using Defender alone, and I have saved significant IT management time by avoiding manual updates and manual work."

"Setting up Microsoft 365 Defender is easy. It's a user-friendly solution that provides threat protection. It has good stability and scalability."

"My clients like Defender's file integrity monitoring. They're monitoring Windows and Linux system files."

"The feature I like the most in Microsoft Defender XDR is XDR because it has taken us a while, but we are a global company with people in a few countries, and now we can have centralized alerts that we send out to Teams messages and clean up infected computers or help people in a very short amount of time."

"Vulnerability assessment and just-in-time access are some valuable features of Defender for server plans."

"The best feature is probably the alert generation. When I do a security reset, the other session triggers instantly from the Defender console, and I can work on it. The policies are three times, but they are also ready to install it."

"Improvement is needed in the intuitiveness and integration measures of FortiXDR, especially in terms of compatibility."

"The pricing of FortiXDR should be improved. It's a point of concern for us."

"Many of the solutions, such as CrowdStrike have an MDR solution where remediation can be provided by the vendor. For example, if there is any zero data threat found, a new threat that the customer is not able to recognize, fix, or understand what needs to be done this feature has to be added in FortiXDR so that the customer feels comfortable."

"Improvement is needed in the intuitiveness and integration measures of FortiXDR, especially in terms of compatibility."

"They could change their licensing costs to make it more affordable for smaller businesses."

"They could change their licensing costs to make it more affordable for smaller businesses."

"The pricing of FortiXDR should be improved."

"For some scenarios, it provides good visibility into threats, and for some scenarios, it doesn't. For example, sometimes the URLs within the emails have destinations, and you do get a screenshot and all further details, but it's not always the case. It would be good if they did a better job of enabling that for all the emails that they identified as malicious. When you get an email threat, you can go into the email and see more details, but the URL destination feature doesn't always show you a screenshot of the URL in that email. It also doesn't always give you the characteristics relating to that URL. It would be quite good if the information is complete where it says that we identified this URL, and this is what it looks like. There should be some threat intel about it. It should give you more details."

"Defender XDR could provide recommendations for threat-hunting queries. Some people do not know how to write an advanced threat query, so we need to spend time training them."

"There is no comprehensive visibility, making it less user-friendly."

"One of the biggest downsides of Microsoft products, in general, is that the menus are often difficult to find, as they tend to move from place to place between versions."

"There are other SIEM solutions that are easier to use, mainly based on the creation of rules, use cases, and groups."

"We struggle sometimes with tier one support agents who give canned responses."

"The solution does not offer a unified response and standard data."

"The customer support aspect can be better because it's the biggest complaint I hear about Microsoft."

"This is an expensive solution compared to other vendors, such as Check Point."

"It is 15 dollars per server per month. It is worth it, but it can be costly. It depends on the company's size."

"Defender plan 1 is tenant-wise, and Defender plan 2 is per-user, which makes it more expensive. To have certain features, you would need to purchase the E5 license. For all of the capabilities that the tool provides, the price, though it can be high, is fair."

"It is fairly priced because we get complete integrated services with the E5 license."

"Microsoft Defender XDR is already included in our Office 365 licensing. It is better because we're saving money by using it."

"It can be complex to navigate since customers have varying licensing agreements across Microsoft. If they go straightforward with E5 for all users, it's simple, but combinations based on budget constraints can complicate things."

"Its licensing and pricing are handled by someone else. My role is limited to incidents or issues with the portal, but you get what you pay for. It is worth the cost."

"The most valuable licensing option is expensive, so pricing could be improved. Licensing options for this solution also need to be consolidated, because they frequently change."

"365 Defender can get expensive because you pay per gigabyte of data ingested. On the other hand, much of the data available in the other Microsoft security solutions are made available relatively cheaply—sometimes at cost or for free. Integrating only a limited set of third-party solutions with Sentinel would be cost-effective. It's much more affordable if companies only have Microsoft stuff."