Try our new research platform with insights from 80,000+ expert users
Manager at InterLAN
Real User
Top 5
Offers network visibility and helps to avoid stranger devices getting into the LAN or Wi-Fi
Pros and Cons
  • "The tool provides us with a list of devices that tries to connect to our network. It offers us a lot of network visibility."
  • "The solution's licensing price should be improved."

What is our primary use case?

We use the tool to ensure that we have network access. It also helps us avoid stranger devices getting into the LAN or Wi-Fi. 

How has it helped my organization?

The tool provides us with a list of devices that tries to connect to our network. It offers us a lot of network visibility.

What needs improvement?

The solution's licensing price should be improved. 

For how long have I used the solution?

I have been using the product for three years. 

Buyer's Guide
Fortinet FortiNAC
December 2024
Learn what your peers think about Fortinet FortiNAC. Get advice and tips from experienced pros sharing their opinions. Updated: December 2024.
824,067 professionals have used our research since 2012.

What do I think about the stability of the solution?

I would rate Fortinet FortiNAC's stability a ten out of ten. 

What do I think about the scalability of the solution?

I would rate the product's scalability a ten out of ten. 

How was the initial setup?

Fortinet FortiNAC's setup is straightforward. 

What was our ROI?

We have seen ROI with the tool's use and it is high. 

What other advice do I have?

I would rate the product an eight out of ten. 

Which deployment model are you using for this solution?

On-premises
Disclosure: My company has a business relationship with this vendor other than being a customer:
PeerSpot user
Olajide Olusegun - PeerSpot reviewer
Network Team Lead at Atlas Security
MSP
Top 5Leaderboard
Integrates well, simple deployment, but GUI and 3rd-party integration need improvement
Pros and Cons
  • "The most valuable feature of Fortinet FortiNAC is its integration with all other Fortinet solutions."
  • "The GUI in Fortinet FortiNAC could improve."

What is our primary use case?

Fortinet FortiNAC is a network address control solution that we use as an identity and access management server. We integrate it with network devices and workstations to create policies and privileges for network access and device management. It also performs posture checks on Windows workstations to ensure compliance with security policies before granting network access. Essentially, it profiles endpoints and workstations, and checks for security compliance (such as updated patches, enabled firewall, and vulnerability compliance) before granting network access.

What is most valuable?

The most valuable feature of Fortinet FortiNAC is its integration with all other Fortinet solutions.

What needs improvement?

The GUI and network visibility in Fortinet FortiNAC could improve.

Integration with 3rd-party devices can be improved.

For how long have I used the solution?

I rate Fortinet FortiNAC for approximately two years.

What do I think about the stability of the solution?

Fortinet FortiNAC is stable.

What do I think about the scalability of the solution?

We have one customer using this solution.

We have approximately 20 users using the solution.

The solution is scalable.

How are customer service and support?

I have contacted the support from Fortinet FortiNAC. The response time could be quicker.

I rate the support from Fortinet FortiNAC a seven out of ten.

How would you rate customer service and support?

Neutral

Which solution did I use previously and why did I switch?

I have used Cisco ISE and Aruba ClearPass, and Fortinet FortiNAC is a lot easier to set up.

How was the initial setup?

The initial setup of Fortinet FortiNAC is easy. The time it took to set up was approximately five hours.

What's my experience with pricing, setup cost, and licensing?

The solution is expensive. However, it is not as expensive as other solutions, such as Cisco ISE.

What other advice do I have?

If people are looking for a smooth operation and don't want the trouble of using Cisco ISE or Aruba ClearPass, Fortinet FortiNAC is a great solution to consider. It's easy to set up, especially if you have an all-Fortinet environment with FortiSwitches, FortiGate Firewall, and FortiAPs. It can make your life much easier.

I rate Fortinet FortiNAC a seven out of ten.

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Buyer's Guide
Fortinet FortiNAC
December 2024
Learn what your peers think about Fortinet FortiNAC. Get advice and tips from experienced pros sharing their opinions. Updated: December 2024.
824,067 professionals have used our research since 2012.
Cyber Security Specialist at a tech services company with 51-200 employees
Real User
Enhances the Security Fabric with visibility, control, and automated response for everything that connects to the network & protection against IoT threats extending control to third-party devices.
Pros and Cons
  • "Provides containment and security and and carries out file analysis for cyber theft."
  • "Admin UI could be better matched and easier to use; it cannot work as a RADIUS server."

What is our primary use case?

I was certified in FortiNAC (Part of Fortinet-NSE6) last year and I've personally implemented FortiNAC in three organizations. We work as a team with people who have expertise in different areas and Vendors and have exposure to different infrastructures.

FortiNAC scans your network to discover every user, application, and device (IOT), With up to 18 different techniques, it can then profile each element based on observed characteristics and responses for granular visibility - We then apply state-based control(eth0 VLAN switching) and Policy based control rules for access control and response.

Anyone (Domain users, Contractors, guests, etc) wanting to connect to the network has to be accessed by the NAC. Users come in at different times and some may be working from branches or home through a VPN and they will be authenticated in the same way with different privileges on the Network.

So it has to run 24/7. It's authenticating users all the time. We are gold partners with FortiNac. 

What is most valuable?

There are quite a number of things that are valuable about this solution. Having dealt with Cisco ISE, I realize that FortiNAC is different in a way that gives you granular visibility of the entire network infrastructure related to IOT devices (Who, What, When, Which information). It's helpful that you can know what's going on from your phone, your tablet, and from home. The solution provides containment, reporting and security event-alarm mapping and saves log and carries out further analysis for cyber thefts. It really is a good solution.

What needs improvement?

I've realized that one of the issues is the need to use agents. For instance, if a domain user has to authenticate on the network via FSSO or Certificate management he has to have a persistent agent.

The admin UI is not that good. It could be better matched and more friendly to use and it cannot work as a RADIUS server. You have to have a RADIUS server which means bringing in a FortiAuthenticator to build it.

The other thing would probably be the visibility granular. For example, when I have a user at a particular branch, I can't tell what SSIDs they are connected to. I only have the IP addresses so if the wireless controller is integrated with FortiNAc, you're going to realize that you won't be able to know whether a particular person is connected, that an AP is connected to a particular SSID, is connected to. . .  etc. It only gives you the IP addresses, Host names, etc. That has to be improved and am sure it will be in the next build version. 

Additional features, would be an agentless link and adopters - online, offline adopters - it picks the IP's, the host names, the layer 3 information, layer 2 information, what's connected. And also to give different privileges, best rule privileges to users. 

VLAN Interswitching (state based controls) could be quicker when doing the process flow from different sorts of authentication. When it comes to guests or contractors, you don't want to use a dissolvable agents. It dissolves in the process of downloading, but it takes longer and that could be improved.

For how long have I used the solution?

I've been using the solution for a year and a half. 

What do I think about the stability of the solution?

FortiNAC is Pretty stable. We initially had a couple of troubleshooting issues in the deployments but we worked them out and it's fine now and has pretty good Visibility across the Network for every device, application and user, extend Control of the Network to third-party products and automated responsiveness.

You won't find so many NAC solutions like it. I mean it's granular, you will see a lot that you need to ask. It will give you all the controls you need and it has event alarm mapping, - I mean "you can't control what you can't see"

What do I think about the scalability of the solution?

It is very scalable, you can have as many features and access points as you want. as you have. It depends on the licenses, but you can have as many IoT devices (Switches, routers, Firewals, WLC, etc) as you want and as many features as you want. You can have visibility to all the ports of the switches on the NAC, you can easily see  Who, What, When, Which information then control and respond

How are customer service and technical support?

Technical support is good. You create a ticket and within that ticket you explain what challenges you're facing. They assign you an engineer who'll help solve the issue. It's pretty easy and straight forward and they're always there to help. 

How was the initial setup?

Initial setup is pretty easy. If you're doing a VM setup, you do the registration on the Fortinet portal, and then you set the IP addresses. I think it's pretty good when you're implementing it the first time, it's very easy but when you get to tests, which are the UAT's, you're most likely to have a few issues that you need to be aware of.

Deployment time depends on the kind of customer. For example, the current implementation I'm doing has an assessing vendor. 90% of the network is wireless and 10% is cabled in network. They have more than 80 access features, more than 80 routers, and two wireless controllers. They have a number of databases and different firewalls - to use that fountain it slows things down. You're also dealing with Domain users, contractors and Guests in different locations. Obviously this will take more time than a project with less infrastructure devices. It really depends on the nature of the infrastructure.

What's my experience with pricing, setup cost, and licensing?

There is a base license level which pretty much gives you topologies and groupings automation/control, etc. When it comes to policies, it's only going to give you user host profiling and network access. If you're looking for endpoint compliance, integrations, Incidence response and reporting, then you have to go for an Plus or PRO license.

What other advice do I have?

You need to think about what you need as a company. There are so many government institutions, so many corporate institutions in the world that want to protect their networks. People have different privileges within a network, an instructor cannot have the same privileges as a normal user and the guest. We have guests coming onto our network, contractors coming to work at different times on the network, the main users who are working in different departments and who shouldn't have access to some platforms. When it comes to authentication you need to make sure you're protected from all kinds of threats. You have different products, Vendors and divices that all need to be controlled. If something goes off you need to know where and why. 

I would rate this product a eight out of 10. It's still evolving. 

Which deployment model are you using for this solution?

On-premises
Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
PeerSpot user
Omar Urquijo - PeerSpot reviewer
Security, infrastructure and networking engineer at Abetelnet Solutions
Real User
Top 5
Has security features and supports compliance with regulations
Pros and Cons
  • "The most valuable aspect of this product is its security features. Many customers prefer cheaper devices, but those often lack adequate security measures. It also supports compliance with industry regulations."
  • "Fortinet FortiNAC's price is expensive compared to other products."

What is our primary use case?

We use the tool to connect different networks, like connecting one side to another. Additionally, we deploy some policies to allow certain users within the network environment.

What is most valuable?

The most valuable aspect of this product is its security features. Many customers prefer cheaper devices, but those often lack adequate security measures. It also supports compliance with industry regulations. 

What needs improvement?

Fortinet FortiNAC's price is expensive compared to other products. 

For how long have I used the solution?

I have been using the solution for three to four years. 

What do I think about the stability of the solution?

I rate the tool's stability a nine out of ten.

What do I think about the scalability of the solution?

Fortinet FortiNAC's scalability is good. 

How are customer service and support?

I haven't used the tool's support yet.

Which solution did I use previously and why did I switch?

The tool's main difference from other products is security, ease of access, and integration with other devices.

How was the initial setup?

The initial setup is not complex—it's quite straightforward. However, the complexity of the environment can vary depending on the customer's requirements.

It could be difficult, depending on the environment. Sometimes, we need integration with other devices, which adds complexity. It's particularly challenging when integrating with older vendors, as their installation processes are often more complex.

I rate it a nine out of ten.

What's my experience with pricing, setup cost, and licensing?

I rate Fortinet FortiNAC's pricing an eight out of ten. 

What other advice do I have?

I rate the overall solution a nine out of ten. 

Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
Flag as inappropriate
PeerSpot user
Network consultant at Juniper Solutions Ltd
Real User
Top 5
Provides efficient network protection and has good scalability
Pros and Cons
  • "It is a good product."
  • "Its technical support needs improvement."

What is our primary use case?

We use the solution as a firewall to protect the network.

What needs improvement?

The solution's technical support needs improvement.

For how long have I used the solution?

We have been using the solution for two or three years.

What do I think about the scalability of the solution?

It is a scalable solution. Our organization has more than 200 users and plans to increase its usage.

How are customer service and support?

The solution's technical support could be better.

Which solution did I use previously and why did I switch?

I have used Sophos, CyberArk, and Palo Alto solutions earlier.

How was the initial setup?

We require two executives for the deployment and maintenance of the solution.

What was our ROI?

The solution generates a return on investment for us. 

What other advice do I have?

I rate the solution a nine out of ten. It is a good product.

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Ubeyd  Kara - PeerSpot reviewer
Founder at Prosight
Real User
Top 5
Is suitable for multivendor topologies and handles most configurations
Pros and Cons
  • "With FortiNAC, we don't need to configure the mass client site or access points. For example, we don't need to configure the switching site for a client's site. With Persistent Agent, it makes it much easier."
  • "I would like to be able to compare the configuration backup before and after."

What is our primary use case?

We use this solution to control the network.

What is most valuable?

With FortiNAC, we don't need to configure the mass client site or access points. For example, we don't need to configure the switching site for a client's site. With Persistent Agent, it makes it much easier.

What needs improvement?

I would like to be able to compare the configuration backup before and after.

What do I think about the stability of the solution?

After version nine, the solution has been stable. There were some issues with stability in the previous versions.

What do I think about the scalability of the solution?

It is a scalable solution. Some of my customers have nearly 100 endpoints. I use sync topology with my customer who has over 2000 clients or endpoints.

How are customer service and support?

The technical support is fast, and I would rate them at nine out of ten for speed.

I would rate the documentation in relation to problem solving at seven out of ten.

How was the initial setup?

Fortinet FortiNAC is easier to deploy than Cisco ISE or Aruba ClearPass. However, you have to know authentication systems and requirements when implementing on NAC devices.

What's my experience with pricing, setup cost, and licensing?

FortiNAC's price has gone up in the last year. However, compared to other solutions, such as Cisco ISE, it is cheaper.

What other advice do I have?

If you're considering implementing FortiNAC, I recommend determining which type of implementation is suitable for your needs.

FortiNAC can handle most configurations easily, but Cisco ISE works with only Cisco devices. Thus, FortiNAC is suitable for multivendor topologies, whereas Cisco ISE is not. Overall, I would rate FortiNAC at eight out of ten.

Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
PeerSpot user
Sr. Network Architect at a manufacturing company with 10,001+ employees
Reseller
Has a good interface that is easy to use and has good features
Pros and Cons
  • "The interface is good and simple to use."
  • "The course content could be improved, it's not that simple to work through."

What is our primary use case?

I'm a senior network architect and our company is a reseller of FortiNAC. This is a new product for me and we'll be starting implementation shortly. We've been testing the product and I'm just finishing the course. I'll be implementing for our client which is a medium-size company.

What is most valuable?

The interface is good and simple to use. Some of the ideas presented on the online course could be clearer, like policy creation. But the interface and other features are very good. 

What needs improvement?

I think that the course content could be improved, it's not that simple to work through. I'm an expert on Cisco ISE. And also I have CCIE on Cisco. I made a comparison between Cisco ISE and FortiNAC. Cisco ISE has full integration but FortiNAC doesn't.

For how long have I used the solution?

I've been using FortiNAC for just one month.

What do I think about the stability of the solution?

I'll have a better idea next week about the stability, once it's been tested in the production environment.

How are customer service and technical support?

The communication with customer support is fine from an administration perspective. But it's lacking documentation on the concept of how the technology works. There are no documents in the FortiNAC library relating to network function. 

What other advice do I have?

I would rate this product an eight out of 10. 

Which deployment model are you using for this solution?

On-premises
Disclosure: My company has a business relationship with this vendor other than being a customer: Reseller.
PeerSpot user
Mouzong Francis - PeerSpot reviewer
Technical manager at SANCFIS FASO
Real User
Top 10
Easy to configure and provides good performance although the technical support is lacking
Pros and Cons
  • "Provides good performance, is easy to use and configure."
  • "Technical support could improve their response times."

What is our primary use case?

I use FortiNAC to limit access to our network; it's our firewall. We are customers of Fortinet and I'm a technical manager. 

What is most valuable?

The solution provides good performance, is easy to use and easy to configure.

What needs improvement?

The technical support could improve; the response time is quite slow. 

For how long have I used the solution?

I've been using this solution for two years. 

What do I think about the stability of the solution?

The solution is stable. 

What do I think about the scalability of the solution?

The solution is scalable, we have 100 users. 

How are customer service and support?

Customer support could be improved as their response times can be quite slow. 

How would you rate customer service and support?

Neutral

What's my experience with pricing, setup cost, and licensing?

We pay an annual licensing fee; this is quite an expensive solution. 

What other advice do I have?

I rate this solution seven out of 10. 

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Buyer's Guide
Download our free Fortinet FortiNAC Report and get advice and tips from experienced pros sharing their opinions.
Updated: December 2024
Buyer's Guide
Download our free Fortinet FortiNAC Report and get advice and tips from experienced pros sharing their opinions.