Fortinet FortiAuthenticator Reviews

We use the solution for different clients and how they authenticate for VPN and Wi-Fi. We also use it for the captive portal and single sign-on. We use it for quite a bit for authentication.

The product has become a central hub for how dozens of our clients authenticate to VPN and Wi-Fi. It has given us a very easy way to manage dozens of customers and how they authenticate and troubleshoot. It gives us a one-stop shop for everything. The solution is very easy to manage. When we have multiple customers authenticating to multiple domain controllers, it centralizes all that from an MSP perspective.

The ease of management of authentication for multiple clients is a valuable feature.

The product must provide full support for third-party FIDO security keys. It must also provide full support for YubiKeys authentication keys.

I have been using the solution for about four years.

The tool is extremely stable. I rate the stability a ten out of ten.

We can scale the solution pretty well. I rate the scalability a ten out of ten.

We rarely have to call the support team for this product. When we do call, support is usually pretty good.

Positive

The solution was straightforward to deploy.

I have seen an ROI on the tool.

I rate the pricing an eight out of ten. The solution is not very expensive.

If someone’s looking for a way to easily manage the different ways that users can authenticate in their environment, I would suggest Fortinet FortiAuthenticator 100%. It's an extremely good value for all the different things that it does. Overall, I rate the product a nine out of ten.

We are using Fortinet FortiAuthenticator for Single Sign-On (SSO) logins and Active Directory (AD) credentials with Fortinet tools. For accessing the cloud environments and on-premises, we use SSO.

The integration into tools, including CI/CD pipelines, is easy and handy.

We use multi-factor authentication for enhancing security. Also, Fortinet FortiAuthenticator helps with password enhancements.

The technical support could be improved as some staff lacks the necessary knowledge to assist effectively.

We have been using the Fortinet tool for the last two years.

The stability of Fortinet FortiAuthenticator is rated as six out of ten, indicating some instability issues.

Scalability is good, rated as eight out of ten.

Technical support is mixed. Sometimes, technical support is very good, however, at times, some technical staff lack knowledge, which delays issue resolution.

Neutral

Currently, we are not using Veracode. We are working on different tools, and since the client does not require Veracode, we are stopping its use.

I have not been involved in the deployment or configuration process.

I am not part of the deployment or configuration teams. Other teams handle these tasks.

I'd rate the solution six out of ten.

The solution allows connectivity when switching between LAN and Wi-Fi primarily, and it also uses it for free tokens. So we can share tokens across multiple firewalls.

RADIUS server and integration, apart from the fact that it is a type of tool that can become a certificate server, are the valuable features for which I use it.

I'd like to see the interface become more like other FortiGate products. It seems a little bit of an orphaned one. The user interface and clustering are areas with shortcomings that need improvement.

Scalability has room for improvement since it's not really a cluster. It'd be nice with cluster data. There are things where you have to go to each FortiGate to change. So, there needs to be a cluster.

I have been using Fortinet FortiAuthenticator for five years.

The current version is stable. So, Fortinet FortiAuthenticator 6.3.3 is running.

Scalability-wise, it is a fine solution. Scalability-wise, I rate the solution a nine out of ten.

Around 20 customers are using the solution.

Regarding the support team, I would say that we have faced occasional setup issues for which the support was appropriate.

The initial setup is complicated. However, considering the complicated tasks it does, it is fine.

In general, you just spend about three days designing and implementing the solution.

The deployment is done in the customer's environment and as per what they require. So, configure the LDAP integration and SAML integration with the existing sources. Then I started to create the SAML services and RADIUS services for firewalls. I then copy to add the tokens before authenticating the users. Then, they can pull it down from the OTAP service.

The customers need to pay for licenses, and some pay on a yearly basis while others pay on a three-yearly or five-yearly basis. Also, it is not an expensive solution.

I would definitely recommend the solution to those planning to use it. However, I would suggest those planning to use it figure out what they want because you also have a FortiGate product, Fortinet product, and FortiAuthenticator, which can be a bit confusing. There are other products that FortiGate sells. So you have to figure out which solution you want.

I rate the overall solution a nine out of ten.

FortiAuthenticator provides multi-factor authentication. After testing your username and password, it adds another layer of authentication where FortiAuthenticator challenges you with a number provided by the FortiToken app on your mobile phone.

I appreciate its ability to provide multi-factor authentication, but it's primarily focused on this function.  

There are some minor things that could enhance the overall experience. Maybe enhancing user integration with other solution tools to implement multifactor authentication using virtual authentication. 

Another area of improvement is stability and support.

We have been using this solution for two and a half years. We use the latest version, we usually update the solution for the upgraded version. 

It is quite stable. I would rate the stability a nine out of ten. There are other solutions that perform certain aspects better than FortiAuthenticator. It's a strong solution, but there's room for enhancement.

There are no problems with scalability. In our company, all the employees use it to access network resources through VPN. And around 60% of our customers also use this solution. 

Customer service and support are quite good. Fortinet provides quick and helpful responses, though occasionally, the answer might not directly address the issue.

We used Cisco SSO authentication system before switching to Fortinet FortiAuthenticator. It was mainly because of economic aspects. 

The setup depends on the integration requirements. Integrating FortiAuthenticator with other Fortinet products is relatively straightforward.

In terms of implementation, it performs quite well.

The deployment time is variable. Due to occasional weaknesses in the API, deployment time can vary. Sometimes it's easy, and sometimes not due to these factors.
We managed the deployment ourselves. In another business unit of my company, we're integrators for this tool. We handle the sale and implementation projects, so we have the required competencies.

For example, we need to set up the network and integrate it with the desired resolution for the deployment process. Then, deploy the client zone to the users' mobile phones, enabling them to use virtual authentication configurations.

The solution is deployed both on-prem and cloud. The staff needed includes engineers, developers, and sometimes even technical support for custom API creation and customer designations.

I have seen an ROI because the solution allows you to enhance security, leading to better rates in other security aspects.

It's not expensive. As we increase the number of users, we'll also be expanding the company workforce.

It's a yearly payment, but you can also find options for monthly payments. There are no additional costs to the standard license. 

I would rate the pricing a five out of ten, where one is the cheapest and ten is expensive. 

The advice is simply to use it. Overall, I would rate the solution an eight out of ten. 

My environment is multi-cloud. I have a production workload in Nigeria. I have some data centers in Continental Europe and in the East US in multiple regions. We operate both on-premises and on two different public clouds: AWS and Azure. At the time, because of how Fortinet worked, we connected to our customers via remote access VPN.

Because of the nature of Amazon Infiniti, it had a very big impact in Africa and on how we implemented our SA as the most effective authentication service for our VPN. 

Originally, when people tried to connect, they had to put in their original credentials and send a request back. The issue here started before software tools were being used, and hardware tools had to be used for privacy. We had to have five firewalls and five different token devices. It was very clumsy and not efficient.

We decided to go with FortiAuthenticator because it provides us with a single point of authentication, instead of having an authenticator on each one of the firewalls. Only five to twelve hours are connected on the back and then Citrix will send us an email or a text message. We can then easily and seamlessly use the solution.  

The first valuable feature is being able to see everything on one platform. This includes logs and authentication failure.

The second valuable feature is that the delivery and delivery methodology is toll-free. This includes email configuration, using the mobile app, and text message delivery. There is no need to buy any extra hardware, it is free.

The third valuable feature is that the chip that is applied is free.

We save a lot of money on consolidating tool teams. We have multiple different tool teams. This solution provides us with a single point of authentication for all of the files in all of the teams' environments.

The user interface can be improved.

The technical support team is bad. 

Neutral

The cloud deployment felt limited, but there was valuable information on the Internet. A lot of testing needs to be done, and the deployment is easier for those who understand how to do it on the cloud. We needed support here and the support team could not figure out the issue. Eventually, one of the support team members helped, but there was still an information gap.

It is usually cheap. Without a license, you can use some basic features. You can buy a 20-year license and implement the solution once.

I rate the overall solution a nine out of ten, due to support issues.

Our primary use case for the product is to enable two-factor authentication for our VPN solutions within FortiGate. Additionally, we utilize it to secure our FortiWeb tool security portal with two-factor authentication.

Improvements in the product could start from the dashboard, overall customization, and configuration. FortiAgent, installed on an end user's computer, provides two-factor authentication but lacks centralized management. This particular area needs improvement. 

We've been using Fortinet FortiAuthenticator for around five years, staying updated with the latest version.

I rate the platform's stability as four out of ten. When they release new software, we sometimes encounter issues utilizing the box, and it takes almost 30 days to resolve them.

In just our organization, where we are a partner, there are around 100 Fortinet FortiAuthenticatorusers. However, we have implemented the solution for customers with up to 10,000 users.

I rate the scalability a ten out of ten.

The technical support team is helpful.

Neutral

Our organization has a diverse portfolio of products, including Check Point and hardware such as switches, Xfinity Networks, Juniper, HP, and Dell.

We typically only need to perform installation updates or implement changes if infrastructure changes occur at the customer's end. This doesn't happen often, once or twice a year. When implemented correctly, it's not complicated to manage, so it isn't required. We have a team of five engineers responsible for deployment, maintenance, and all other operations related to the product.

The platform provides a user-based pricing model rather than a subscription pricing model. For instance, the virtual machine and license for 100 users amount to around $2000. Additionally, there may be additional expenses for features like FortiToken.

I rate the pricing an eight out of ten.

FortiAuthenticator enhances user authentication by integrating a database with user credentials, including logins and passwords. This integration enables the import of user data from various sources such as Active Directory, Microsoft, OpenLDAP, or RADIUS servers. Additionally, FortiAuthenticator supports adding a second factor for authentication, which can include options like Fortinet SMS, email tokens, or other methods.

The implementation has significantly improved access management within our organization. We have exposed certain portals like Avaya and Microsoft Exchange to the public internet by adding a two-factor authentication login process to these portals using the product.

The most critical feature in improving our security is the two-factor authentication feature. It also includes an agent that can be installed on a user's computer, adding another layer of security to the login process for computer access.

For these users, incorporating the second factor poses no problem. However, some less experienced users may need help adding and using the second factor during login. With assistance from our help desk and after a few attempts, these users find the process straightforward.

Integrating FortiAuthenticator with our existing infrastructure has been quite easy, especially considering our experience as a business partner of Fortinet. After several years of using and implementing the product for our customers, we've encountered no major issues. The process is simple, typically taking only a few implementations to become familiar with all the features.

I recommend it to others and rate it an eight out of ten.

We use the product network device authentication for Linux and Windows server integrations.

The product is good, cost-effective, and functionally efficient. It has a valuable capability to work as a virtual machine and integrate with Active Directory.

They could expand FortiAuthenticator's capabilities to accommodate a broader range of environments. It needs a user-friendly interface and intuitive console for those needing in-house solutions. Additionally, there should be a mobile-centric approach for remote control capabilities while proceeding.

We have been using Fortinet FortiAuthenticator for more than ten years.

The product is stable in our production environment.

We have 5000 Fortinet FortiAuthenticator users in our organization.

They could improve the response time for severe cases. At present, they reply within a day or two. However, they do provide good solutions.

Positive

We have used Cisco's firewall products before. In comparison, Fortinet is more user-friendly and easy to configure.

We require two administration executives to manage the product.

We provide implementation and maintenance support for all our customers.

The product has affordable pricing compared to other vendors. They offer valuable features considering the cost.

Fortinet FortiAuthenticator is a very popular and robust product in the market. They provide integration with third-party applications.

I rate it an eight out of ten.

In my recent job, I worked in tandem with Fortinet to enable 802.1X authentication for the Wi-Fi environment.

The web feature is quite versatile. It serves as the sole server authenticator and is valuable not only with FortiGate products but also within the entire Forti system, making it highly useful for me. However, from my experience, I find the visual data to be less practical. While some features might be more respected than others, it's valuable that, for instance, when a customer has a new lead cluster, I can authenticate or leverage alternative solutions to achieve the desired outcome.

The only issue I encounter is that when not using FortiAuthenticator for an extended period, it's typical to encounter some obstacles in the configuration process that you need to address. It's not a consistent problem, and I can't recall all the specifics. This issue is something I face with the entire product. While it's normal for products to require ongoing attention, this can be a challenge when checking the system.

I have experience with Fortinet FortiAuthenticator.

I recollect instances when customers didn't approach me about their issues, instead opting to submit tickets. From a personal perspective, customer mobility played a role, and sometimes I wasn't fully aware of the problem until later. However, I can't recall many details about these cases.

It's scalable. If the need arises, you can easily set up a cluster with two or more units. Additionally, if you require more licenses or features, you can expand.

It works well for me. I can review the initial check, explain it thoroughly, outline the subsequent steps, and attempt to address the problem. This often involves quickly escalating to technical levels two or three. In situations where I open a general ticket, it's standard to begin with a level one tech who collects information to understand and resolve the issue. The more detailed and accurate the data is, the easier it becomes to find a resolution.

Positive

It is deployed on-premises. One or two days for initial deployment is insufficient. It typically takes a few more days to set up the specific configurations. The standard device configuration is exceptionally fast.

Based on my experience it's been very good. I don't have much knowledge, for instance, about how it compares to Gartner's system and its current position in the market, or whether there are other systems that might have a better position. I've noticed that Fortinet lacks certain features that other solutions have implemented. This leads me to explore and understand other solutions, looking for differences. I've observed that some solutions offer features that Fortinet may excel in, while others may have strengths in different areas. I would rate it an eight out of ten overall.