Fortinet FortiEDR Reviews

We use it for endpoint security. We were searching if it could replace our old EDR solution. 

We use it for everything now. We no longer have another security solution except from the Microsoft 365 package.

Fortinet FortiEDR handles our main endpoint security.

We have FortiEDR installed on all our systems. This protects them from any threats.

This solution has improved our endpoint security posture. Before this, we didn't have any EDR solution, just standard endpoint security. 

Now, with FortiEDR's behavior analysis and comprehensive threat detection, we definitely have better protection.

We chose FortiEDR because we were looking for a robust EDR solution. One thing that appealed to us was the potential integration with our FortiGate firewalls. 

We hoped to mitigate threats and stop the traffic by having the firewall and EDR work together, but this wasn't straightforward out-of-the-box. It needs specific configuration which hasn't been done yet. That was a bit unexpected.

I would like to improve the integration process because a big selling point was the ease of integration within the Fortinet ecosystem. I would expect more built-in collaboration to allow for easier threat mitigation across Fortinet systems.

The strength of FortiEDR lies in its overall ability to protect us from new threats. We have encountered issues with it as well.

We've had a lot of false positives; things incorrectly flagged that require manual configuration to allow. Even worse, after we allow a legitimate program, it sometimes gets flagged again after an update. This has caused a lot of extra work for my team. I would like to see improved heuristics so the system better understands what's legitimate and doesn't keep blocking it after minor updates.

I have been using it for a year. We use the latest version in my company. 

I would rate the stability a six out of ten. 

We've had some erroneous warnings that didn't make sense. It gives me the impression of a product that still has some issues to resolve. 

Additionally, there are three main areas of concern:

1. The product itself seems to have some unresolved issues.
2. The integration with the rest of the Fortinet ecosystem could be better. It feels standalone rather than part of an integrated solution.
3. The high level of maintenance required due to the heuristics, or lack thereof. We keep seeing the same warnings and blockages even after updates. We need to constantly be on top of it, allowing traffic repeatedly.

So, all those factors impact the overall stability. There's room for improvement, especially considering it's a newer version.

I would rate the scalability an eight out of ten. 

It's installed on everyone's devices, so it's protecting users during working hours. Think of it as active for five days a week. We use it to its maximum capacity. 

We have around 500 end users.

We work through our supplier for support. We've shared our findings and issues, and there was some initial back-and-forth to find the root cause. There wasn't a clear, immediate answer or solution. They opened tickets with Fortinet, so it feels like the whole process is still evolving.

Neutral

We had traditional endpoint security, but this is our first EDR solution.

We didn't have any major problems during the installation while in monitoring mode. Issues arose, causing a lot of overhead, when we enabled the prevention mode and started seeing those false positives.

If we're looking strictly at the setup, there weren't any problems. I'd rate my experience with it an eight out of ten, with ten being easy and one being difficult to set up. 

The implementation itself was fine, but we experienced a lot of frustration due to the overhead of those false positives. We had to dedicate someone to constantly monitor and allow legitimate traffic. This created a negative experience with FortiEDR.

The deployment involved installing it on all our endpoint user devices. One person handled the deployment. 

We use it on the cloud. Since it's a managed service, the provider handles the systems where it's installed. We install the client on our users' devices.

We have one person dedicated to maintaining, but I'd like to have less overhead. There's too much time spent handling these findings. We'll be working with the service provider to try to reduce that.

We license it per employee, so as long as the employee count remains the same, the licensing won't change. We have it installed on every device.

We got a good deal on licensing, so it is in the competitive range.

I would rate the pricing a seven out of ten, with ten being expensive, and one being cheap. 

The pricing is fixed. However, we had larger configuration costs associated with the implementation.

We considered CrowdStrike and Microsoft Defender. Cost was a factor, and we were interested in the potential integration with FortiGate firewalls. However, that integration didn't work out as smoothly as expected.

Definitely have a small testing environment and not just monitor mode. Include a limited network so you can see how it reacts in full prevention mode to assess the potential impact of false positives. 

Also, if you are interested in integration with FortiGate firewalls, carefully investigate how that collaboration will be achieved.

Overall, I would rate the solution a six out of ten.

We are an incident response team, and we use Fortinet FortiEDR for our cyber protection-related activities.

Fortinet FortiEDR has helped our organization by providing reports that identify network weaknesses.

With the proper training, the solution is easy to use.

In some cases, the solution has freed up around three and a half hours of our staff's time so that they can work on other projects.

The most valuable feature is the analysis, because of the beta structure.

FortiEDR can be improved by providing more detailed reporting.

I have been using Fortinet FortiEDR for seven years.

I give the stability of the solution a seven out of ten.

FortiEDR is a scalable solution because it has a well-structured and manageable report that is easy to understand.

We previously used a different solution, but I cannot recall its name.

I give Fortinet FortiEDR an eight out of ten.

I came here to test ICS points and get some tools for VFDs. API security is becoming increasingly important, as we use a lot of APIs in our government. We need to test APIs to ensure they are secure, especially as ransomware attacks are also on the rise.

This is my fourth time coming to this RSA. I bought a new product here this time. We can see everything in one room, which makes it easy for us to understand and also make new contacts.

Fortinet FortiEDR protects our workstations against ransomware and other malicious applications.

The solution acts like an advanced antivirus with extended features like logging and automated response to detected threats. This automation helps save time, as the system automatically handles malicious detections and responses without much manual configuration.

The tool has saved me time managing workstation protection.

I did face some challenges using Fortinet FortiEDR, especially in the Mac environment. While the detections work well in Windows, Mac has limitations. If I need to configure something in the Mac environment, I have to open a support ticket because I can't do it myself; the support team has to apply the configurations on the backend.

I have two main suggestions for improvement: enhancing the UI and UX to make it more beginner-friendly and giving users more control over configurations in the Mac environment without contacting support.

I contacted Fortinet support, and I would describe it as really helpful. They responded quickly, usually within one or two business days, and the guidelines they provided were simple and easy to understand, even for non-technical engineers.

Positive

The solution's deployment is straightforward, but the dashboard can be confusing due to its less user-friendly design. I had to reach out to Fortinet support a few times, and they were quite helpful, usually responding within one to two business days. Their guidance made the configuration process easier.

The agents' deployment was simple and took about a week to complete across all workstations. However, fine-tuning the rules to manage false positives took longer—around three months.

I chose Fortinet FortiEDR because it's more cost-effective than competitors, potentially saving me up to half the price.

I rate the overall solution an eight out of ten. 

It's a kind of virus defense that is looking to the future and not to the past.

The main thing is that I feel safe. Because the processes that have been used to get a handle on the attackers are much better than other competitors.

The solution is very secure compared to other vendors.

The only minor concern is occasional interference with desired programs, although it's a necessary trade-off. Otherwise, I have no suggestions for improvement.

Another area of improvement is support. It could be faster. 

In future releases, maybe some extra features could be added to make it better, and maybe the events and history could be made a little bit clearer.

We've been using it for four to five years now.

It is a stable solution. 

It is a scalable solution. There are around 6o end users using this solution. It is easy to scale. 

The customer service and support are quite okay. It could be better. 

Positive

I have used ESET. ESET is an old-style defense that has less problems with new programs, but it's not as secure as Fortinet.

We currently use both ESET and Fortinet. We have some places, especially for developers, that can't use FortiEDR because it's too restrictive.

Installation is straightforward.

The initial installation on the server side takes a bit of time, but if we consider the overall process, it could take about a week.

We require two people for deployment. The maintenance is easy. 

The pricing model is okay. It's not cheap, but it's not expensive either. It's a customized price. It's a yearly license. There are no extra costs. 

I would definitely recommend the solution. 

Overall, I would rate the solution a nine out of ten because but the only concerns I have are that it can sometimes have problems with new programs, and the support could be a bit faster.

We are using the AirGap edition. The solution is used for threat hunting. Some things are aligned to update the database to keep up with the vulnerabilities and threats on the internet.

I get alerts when scripts are detected in the environment. I can immediately stop the process. I can see which processes are running and immediately allow, stop, or reverse the damage.

The solution is not user-friendly. It is a bit hard for me. We must have the knowledge needed to find the threats using the product. We must know how to navigate and investigate using the tool. I think the usage is limited for AirGap users. We cannot use AI. Keeping up with the agent updates is a little bit difficult. Fortinet must make agent updates easier.

I run the solution on-premise. One of the VMs needs a lot of memory. It takes a lot of resources off of my VMware. I know I need resources to run threat hunting. The vendor advised me to go to the cloud. However, it's not up to me to go to the cloud. I need my CEO’s approval.

I have been using the solution for three years.

I have directly contacted the engineering staff. When I open a ticket, I can contact support immediately. The team helps me with my problems.

Positive

The solution is not expensive. However, CrowdStrike is more expensive.

CrowdStrike is much more advanced than FortiEDR. CrowdStrike is fully on the cloud and has AI features. I think it has a SOC team, too. The user interface is great. According to the reviewers, CrowdStrike is the number one tool for cybersecurity. I am evaluating CrowdStrike so that we can move to CrowdStrike in the future.

The solution provides online training that we can use to learn how to use the product. My recommendation depends on an organization's budget. However, I will recommend CrowdStrike more than Fortinet. Overall, I rate the product a seven out of ten.

We use FortiAI, FortiSIEM, and FortiEDR.

Fortinet helped us scale large-scale deals with clients because of its strong offerings.

Fortinet is very straightforward to use. I have access to a lot of technical resources, and I have been able to use them effectively.

Fortinet has helped free up around 20 percent of our staff's time to help us out.

We saw time to value within two weeks of implementing the solution, which strengthened our use cases.

I would say FortiSIEM, is a good alternative to Splunk.

The focus area for analytics is to tie it into the firewall components within SD-WAN.

ZTNA can improve latency. I believe that a lot of the focus is on SD-WAN.

I have been using Fortinet FortiEDR for four years.

I rate Fortinet's stability a ten out of ten.

I rate Fortinet's scalability a nine out of ten.

Fortinet's technical support is top-notch. They have a partner manager, technical account reps, and a lot of ongoing community activities to ensure that people stay up-to-date on the latest information.

Positive

The initial setup requires a lot of communication with the business to gather and clarify requirements.

We worked with Fortinet to implement the solution, and then our team of technical staff deployed it.

We have seen a return on investment. Teams are being hired and staffed to meet the demand of having Fortinet implemented on our client projects.

The pricing is typical for enterprises and fairly priced. Deals are negotiated with an account manager.

We evaluated Palo Alto Networks. However, we felt that they did not have the entire suite of analytics that I was looking for. Fortinet, on the other hand, seems to have a more diversified offering in this area.

I give Fortinet FortiEDR a nine out of ten.

The RSA conference helps me stay up-to-date on technology. It also helps me think differently about my use cases. Sometimes, a feature is supported, but other times, vendors may not have it. There may be a reason why they're not doing things the way they say they will.

Attending RSA has an impact on our organization's cybersecurity purchases. In fact, some of the vendors I spoke to told me that a group had already scheduled a meeting with us, which I was unaware of.

Clients use the solution for endpoint protection purposes.

It's easy to configure and integrate the solution with the current network because it is used by Fortinet clients.

I have been using Fortinet FortiEDR for two years.

Fortinet FortiEDR is a stable solution.

Fortinet FortiEDR is a scalable solution.

I rate the solution’s scalability ten out of ten.

The solution costs less than 10,000 for 100 users. Users have to pay additional costs to have the solution on the cloud.

Fortinet FortiEDR provides good documentation and training for its partners. I would recommend the solution to other users.

Overall, I rate the solution ten out of ten.

The competition of Fortinet FortiEDR is with CrowdStrike in Sri Lanka, especially if I consider the banking and BFSI sectors, where most of the network areas are handled by Fortinet. With Fortinet FortiEDR, the customers get security and endpoint security for their networks. My company deals with Fortinet FortiEDR for our customers.

With Fortinet FortiEDR, the console is available with the product through the vendor network, which takes care of the security part while offering firewall functionalities. The product offers everything in the same console. With Fortinet, The customers do not face any issues when using other resources in the tool since they don't have to handle the consoles separately. With Fortinet, one person or one resource can handle two consoles together.

Right now, my company focuses on the on-premises version of the product since the cloud competencies offered by the tool are comparatively a bit less. I think cloud security and SASE are areas of concern in the product where improvements are required. The tool's cloud version has to be improved in terms of the security it offers.

I have been using Fortinet FortiEDR for a year. My company functions as a reseller of the product.

Fortinet FortiEDR experiences a good journey in Sri Lanka if you consider the prices it offers and the competitive nature with Check Point and other vendors. Fortinet FortiEDR enjoys a good journey in Sri Lanka when compared to the other vendors. There is no need to convince the customer that Fortinet FortiEDR is good, as they already know about the advantages of the tool. Customers know about the other products in the market and know how the other tools are when compared to Fortinet FortiEDR. In general, customers have knowledge about Fortinet FortiEDR and the other products in the market. I have no complaints about the product since I don't find any disadvantages when it comes to Fortinet FortiEDR.

My company deals with around ten customers of the product that deals in the software industry. There are some customers of my company from the banking and finance sectors who prefer the product's on-premises version.

My company's engineers contact Fortinet FortiEDR's support team. When my company undertakes the process of customer onboarding, our technical team ensures that they directly handle the customer for a year with the help of support from Fortinet's team. As per my knowledge, Fortinet offers good support compared to the other vendors in the market.

The product's initial setup phase is very easy.

The solution is deployed on an on-premises model.

The time required to deploy the solution depends on the needs of our company's customers. My company's engineers handle the product's deployment area. It takes around a month to deploy the solution.

Fortinet FortiEDR is available at a very competitive price compared to the other products in the market. Customers also know about the prices of the Other products in the market, and they are aware that Fortinet FortiEDR's prices are cost-effective.

I recommend the product to those who plan to use it, but I will definitely ask them about the network security platforms they use in their environment. I would definitely recommend Fortinet FortiEDR to those who already have Fortinet products in their environment.

The integration with other Fortinet solutions has not impacted our company's security strategy.

Considering the list of complaints that my company has received regarding the product from our customers, I rate the overall product an eight out of ten.