Fortinet FortiNAC Reviews

The primary use case for this solution is to enhance network security within our organization. We utilize it in various environments, adapting to customer networks which sometimes require setting up power and routing due to multiple lines.

The solution has significantly reduced our operational costs related to network security and has streamlined network security management.

The most valuable features include DNS protection and web filtering, which are effective against hackers and ransomware. Although ransomware remains challenging to identify, these features enhance our overall security.

The product's pricing and configuration process needs improvement. 

I have been using Fortinet FortiNAC since 2010. 

I would rate the stability of this solution as a nine out of ten.

I would rate the product scalability as an eight out of ten.

The customer service and support are excellent.

Positive

We have used different solutions before.

The initial setup was straightforward, with no significant problems. The duration of the installation varied based on the complexity of the customer's network.

I implemented the product myself. 

The product pricing is reasonable.

We evaluated other options, including Cisco.

I rate Fortinet FortiNAC a nine out of ten. 

Our customers use Fortinet to protect their networks and administer their users. It is mainly used in the healthcare industry.

The platform's benefits vary according to each customer's preferences and budget. It generally fits within their budget, making it a viable option.

The initial setup process needs improvement. I suggest improving the support team's responsiveness to reduce delays when issues arise.

I have been working with Fortinet for approximately five years, primarily as an integrator.

The solution is generally stable. However, some bugs need to be addressed with updates. I rate the stability an eight. 

Our customers are enterprise institutions. I rate the product scalability as nine. 

I rate the initial setup process an eight. 

The product cost is moderate. I rate the pricing a seven. 

The product's feature for access control is a key component providing effectiveness in securing the network. It integrates well with other security solutions, with fewer challenges than other products.

I recommend it as it is a good product, easy to install, and integrates well. I rate it a nine out of ten. 

Our customers are from the security and financial services industries. 

FortiNAC is a network access control. In banking systems and in terminals, we need to manage VLAN and receive reports like IBS and IDS. Every VLAN has specific information to share some, but not all, of the files, because there are restrictions in the banking and financial systems. 

All the features of Fortinet FortiNAC are valuable. We find it beneficial to apply the permission rules. 

I have 20 years of experience working with these kinds of products with no issues. Any graphical user interface was very easy to use. Now, everything is new.

For future releases, I recommend that Fortinet make more series with a hard disk. We have customers who request a hard disk. On the one series, 21.101, we can see it has an internal hard disk. The 101 and 201 have a hard disk, however, the 100 and 200 do not. Keeping the hard disk on the one series will be easier for the distributor and will keep the prices lower for the customer. 

I have been using Fortinet FortiNAC for eight years.

The stability of this product is very good. With FortiNAC you have protection for each of your services.

Technical support from Fortinet can be slow as there are some delays. Just like most service providers, the first line of support is the least knowledgeable, so they refer you to the second or third level of support, which causes delays.

However, to activate the license or extend the warranty, they are fast.

We are able to do all of our projects without support. The stability is good. Therefore, I would rate customer service and support a nine out of ten.

Positive

Deployment of Fortinet FortiNAC took no more than three days. One day for analysis, the second day to implement, and the last day to transfer the implementation documents to the end user and to test it.

We implemented this solution by ourselves. The solution requires one or two engineers to deploy and maintain it.

We evaluated Palo Alto, it is very good, however, it is difficult to transfer knowledge for the end user. Palo Alto also does not have email protection.

Fortinet performs all the services we require from them. The implementation of the solution is easy. 

Overall, I would rate Fortinet FortiNAC a nine out of ten. 

Out of 6500 wireless devices we see issues with less than 0.5% of clients. Though the product has many features we only utilize a fraction of them. We use the product for registration and management of our wireless network (NAC). The most valuable asset is visibility in to what a client is and who is using it. By forcing guests/users to register their BYOD devices we know who they are and can then apply appropriate web filtering policies to them based on a number of factors. We can then use that data to export reports etc on usage of our wireless network as a whole and troubleshoot as needed.

Prior to using the product we had a fully open wireless network. This means anyone could come in off the street and connect to our wifi. We would not have knowledge of who they are if the did something illegal or wrong. Our level of security has increase greatly as well as our knowledge of who is on our network.

We have had issues with certain Windows 10 devices not being able to register which requires manual intervention to fix. I think they are working on this issue. As Windows 10 devices grow this issue will become greater.

Another major pain point is management of existing and new wireless access points. You must import the Aps into Network Sentry every time you put them on the network. Its also advised to use DHCP reservations for each AP. The system does not delete APs if you remove them from production as well. This means you must remove the APs from Sentry each time its stake out of production or placed in a new building etc. The initial setup of an AP doubled as a result of using this product. There are steps that must be performed and if any are missed, the AP becomes a black hole resulting in zero connectivity for clients connecting to it.

We’ve used this solution for two years.

Their technical support is a 8/10. They are responsive and have the ability (if you allow) to log into your equipment remotely and fix problems or perform upgrades. They are helpful in answering questions and configuration assistance is always available as this product is complex at first.

The initial deployment took three days however we encountered many issues. The main factor was our network set-up was not fully understood by Bradford prior to purchase and deployment. This created many issues while we were in production with 10-15% of our users having connectivity problems every day. We were not fully operational until 3 months after deployment.

Initial set-up was done via a “Quick Start” where the bare bones are implemented by and on site tech. This is not meant to be a full implementation but to get the foundation in place. The on-site tech was knowledgeable but again, we had issues with understanding out network set-up and its complexity which were not discovered in the quick start.

Vendor team on site, which we paid for. In house is available but would have been very time consuming to learn and implement. I would not recommend quick start but instead have a tech on site for a minimum of 5-7 business days to fully understand the product. Its not until you are in full production will you see issues and have questions. As questions, learn how the product works deep down.

Pricing is expensive but cheaper than some other solutions out there. Licensing is based on number of concurrent devices and a number of other factors depending on implementation type. Yearly maintenance fees are very reasonable and highly recommended. ROI is immediate for us in terms of visibility.

We did not evaluate other solutions other than on a cost basis.

Explain you network set-up in full detail with diagrams. VLANs, SSIDs, switch vendors, wireless vendors, subnets. What methods do you use today for wireless authentication (802.1x/WPA2-PSK/Open). Show them everything and what it looks like to be a client on your network today and the process to get on-line. This product manages both wired and wireless network is you choose both options. This product can also do posturing of devices to ensure they meet criteria like current updates and Antivirus etc. We are not using that functionality yet however.

I use the tool to maintain strict network control. It blocks suspicious connections and only allows specified access. You can control it through MAC addressing. It's all about managing the network so it's not accessible to any unauthorized user or machine.

What I like best about Fortinet FortiNAC's solution is its strong security measures. They're very strong compared to other firewalls. It has good threat detection and strong protection features.

The tool is effective because it won't give access to any unregistered equipment. If a laptop isn't registered, it can't just plug in and get access. It blocks any unregistered company or network device.

I haven't personally used the AI capabilities, but I know they're used in the security risk process. In threat detection, AI can automate incident management and handle suspicious cases automatically.

The solution needs to improve its AI capabilities. 

I have been using the product for one year. 

So far, we haven't had any stability or performance issues. It's been stable.

The solution is scalable and my company has 50 endpoints. 

The initial setup process wasn't too difficult. It's been okay so far, though there might be ways to make it a bit easier. 

During implementation, we faced some minor issues, like trying to get firmware when there was no internet, but nothing I'd call a real problem.

When deploying Fortinet FortiNAC, we first register the budget and understand the client's design. This matters because we need to know what the client wants to protect and where exactly. The scope comes from the design.

For the deployment I was involved in, we only needed two people. It didn't require a big team. The deployment took less than 30 minutes, which was very fast.

Maintenance is pretty normal. There haven't been any specific maintenance requirements beyond normal admin activities.

I would recommend the solution to others and rate it a nine out of ten. 

We use Fortinet FortiNAC to control user access and enforce system policies.

Fortinet FortiNAC helps add an extra layer of security.

The ease of deployment is valuable.

Fortinet FortiNAC's device compatibility could be improved, particularly for VoIP devices.

I have been using Fortinet FortiNAC for two years.

We have experienced stability issues, particularly with the latest firmware versions. The extended development cycle for these updates makes us hesitant to adopt new products immediately upon their release.

I would rate the stability of Fortinet FortiNAC a seven out of ten.

Fortinet FortiNAC is scalable.

When I compare the support of Fortinet to Cisco, I find it to be good but not as good as Cisco's.

Neutral

We previously used Cisco ISE and switched to Fortinet FortiNAC because the users found it more user-friendly and it was cheaper.

The deployment is straightforward and takes around 60 days to complete.

Fortinet FortiNAC is reasonably priced.

I would rate Fortinet FortiNAC a seven out of ten.

Fortinet FortiNAC is a network address control solution that we use as an identity and access management server. We integrate it with network devices and workstations to create policies and privileges for network access and device management. It also performs posture checks on Windows workstations to ensure compliance with security policies before granting network access. Essentially, it profiles endpoints and workstations, and checks for security compliance (such as updated patches, enabled firewall, and vulnerability compliance) before granting network access.

The most valuable feature of Fortinet FortiNAC is its integration with all other Fortinet solutions.

The GUI and network visibility in Fortinet FortiNAC could improve.

Integration with 3rd-party devices can be improved.

I rate Fortinet FortiNAC for approximately two years.

Fortinet FortiNAC is stable.

We have one customer using this solution.

We have approximately 20 users using the solution.

The solution is scalable.

I have contacted the support from Fortinet FortiNAC. The response time could be quicker.

I rate the support from Fortinet FortiNAC a seven out of ten.

Neutral

I have used Cisco ISE and Aruba ClearPass, and Fortinet FortiNAC is a lot easier to set up.

The initial setup of Fortinet FortiNAC is easy. The time it took to set up was approximately five hours.

The solution is expensive. However, it is not as expensive as other solutions, such as Cisco ISE.

If people are looking for a smooth operation and don't want the trouble of using Cisco ISE or Aruba ClearPass, Fortinet FortiNAC is a great solution to consider. It's easy to set up, especially if you have an all-Fortinet environment with FortiSwitches, FortiGate Firewall, and FortiAPs. It can make your life much easier.

I rate Fortinet FortiNAC a seven out of ten.

We installed Fortinet FortiNAC in a large company in a VM environment. They have a lot of end-users and complex user account needs. For example, some of the VIPs and different guests all need different access permissions and some of them are connected through the Active Directory credentials which we have to have a portal page for them to gain access. 

Another layer of complexity is different users are receiving accounts from many departments. For example, the customer's IT department gives them access and they send the credentials to the guest by email. The IT department can limit their account in different ways, such as only allowing the account access for a period of time.

Fortinet FortiNAC has good user account customization. 

We can change the logo for the portals to meet the customer's needs. The portal default language is English but it supports all languages, such as Turkish. The portal can be optimized very easily. 

Device profiling is a good feature, we can block devices, such as iOS or Android.

Endpoint compliance is a great feature that allows us to restrict and quarantine devices. For example, if a device is not using the latest version of an operating system or antivirus program we can detect it and prohibit their access. If certain conditions are met with the customer's policies, we can let them have access. Otherwise, our endpoints compliance rules block or quarantine their devices on the network.

Integration is hard in Fortinet FortiNAC, but they are evolving and getting better. For example, with Cisco, Aruba, Huawei, and Extreme devices, Fortinet FortiNAC is working properly, but some other devices have problems.

I have been using Fortinet FortiNAC for a couple of months.

The solution is stable.

Fortinet FortiNAC can extend your existing network. For example, if you have to put another switch, access point, or another networking device to complete the site we can with one or two clicks add these devices and the same rules and policies. It is highly scalable and can extend your infrastructure.

We currently have two customers using Fortinet FortiNAC

The installation is not straightforward, it can be hard.  The documentation should be better in explaining to process in more detail. The installation requires too much experience and knowledge about network infrastructure. It's not easy, you have to be an expert.

The difficulty level of the installation and time depends on many factors. For example, one of our customer's installations was simple because they only had to block one site and only had one hardware vendor, such as Cisco. 

Our second installation was more difficult because the customer had many different hardware vendors, such as Cisco, Huawei, Aruba, and Extreme as part of their infrastructure. This requires configuring different settings on every device, it can be complicated. This can take a lot of time.

We do the implementation and the amount of staff needed depends on the size of the infrastructure and hardware vendors involved. If it is a smaller environment with a single vendor then the process could take two to three days.

If the customer size is very large and they are using the different sites and cities, and many different network infrastructures, the implementation would take time and you would have to manage everything well. When you have a complex network, it can take approximately15 days to implement. The number of vendors they're working with can increase the implementation time duration. If companies only have one vendor, it's easy, but two or three different vendor integration is a little bit harder and takes time. 

Customer's needs are very important, because some customers, only want that 1x configuration. However, other customers want 1x configuration, custom portal pages, and many endpoint compliance rules. The more features the more time it will take.

The price of the license required is based on how many users are going to be using the solution. If you want more users you can upgrade your license.

I have evaluated other NAC solutions.

I would recommend Fortinet FortiNAC to others because we did evaluate other NAC solutions and this solution is very good compared to the others. The best benefit of Fortinet FortiNAC is the stability and it can work with other vendors. Some NAC products only work with their products and do not support other vendors.

The major benefit I have found is that this solution can work with other products. A customer typically has more than one vendor, such as access points, printers, and other network products. A lot of the other vendors only are working with their products. It's very important for me that Fortinet FortiNAC can work with the other vendors properly and can integrate easily. When I check the Fortinet website, it shows every vendor's details with an explanation about the integration of the Fortinet FortiNAC. For example, you can find out how to integrate the Fortinet FortiNAC with the Cisco wireless controller. I can find the documents, turn to the pages and find all the information I need. I can find it very easily.

I rate Fortinet FortiNAC a nine out of ten.