We performed a comparison between Elastic Security and Fortinet FortiAnalyzer based on our users’ reviews in five categories. After reading all of the collected data, you can find our conclusion below.
Features: Elastic Security is commended for its adaptability, extensive customization options, and seamless integration with the ELK Stack. Fortinet FortiAnalyzer features exceptional log collection capabilities and customizable reporting. Elastic Security could improve by reducing resource usage, automating threat response, and simplifying the user experience. FortiAnalyzer enables users to centrally manage and analyze logs in real time. Fortinet FortiAnalyzer could simplify its reporting module and cloud storage capabilities.
Service and Support: Some Elastic Security users found their support helpful, while others experienced difficulties and delays. Some Fortinet customers were dissatisfied with support, but others said it was helpful and responsive.
Ease of Deployment: Elastic Security generally has a straightforward setup but may require trained specialists. FortiAnalyzer's initial setup is uncomplicated and manageable, typically taking approximately 30 minutes to a few hours. Some IT knowledge may be required.
Pricing: Elastic Security is considered affordable and cost-effective, with pricing based on the size of the monitored environment. While FortiAnalyzer isn't the most expensive option, users say the pricing could be more competitive. FortiAnalyzer's cost depends on the storage requirements, and many customers consider it reasonable.
ROI: Elastic Security has shown mixed results in terms of ROI, with some users expressing concerns about the quality of their premium support. FortiAnalyzer helps customers by providing insight into network traffic and speeding up issue resolution.
"It's simple and easy to use."
"I like that it's a SIEM platform. I like that I can sell Elastic Security quickly. Elastic Security has a large community that can support users."
"It's a good platform and the very best in the current market. We looked at the Forester report from December 2022 where it was said to be a leader."
"The most valuable feature is the search function, which allows me to go directly to the target to see the specific line a customer is searching for."
"Its flexibility is most valuable. We can have a number of scenarios, and we can get logs from anything. If we know how to use Logstash, we can tweak it in many ways. This makes the logging search on Elastic very easy."
"We've found the initial setup to be quite straightforward."
"The most valuable feature of Elastic Security is that you can install agents, and they are not separately licensed."
"The cost is reasonable. It's not overly pricey."
"Based on the logs of Fortinet FortiAnalyzer you can have it trigger actions. For example, if the log has a word or a sentence you specified it can send an alert or Syslog to an email address."
"The anti-virus protection it offers our clients is solid."
"FortiAnalyzer has a user-friendly interface with a quick response and good analytics. It's very secure because it's taking the log from the devices on a secure channel, so there is no problem with that in your network."
"FortiAnalyzer's best feature is centralized log analysis. It's based on SQL database, so I can fully customize my report, chart-wise and log-wise, and can create as many reports as I want without any limit."
"I like its simplicity. It is straightforward. We get reports and emails about the logs, and that's it."
"The solution is very easy to deploy."
"Separating sections or conditions on Fortinet FortiAnalyzer is quite clear."
"Storage in SSD helps in generating customized reports."
"We're using the open-source edition, for now, I think maybe they can allow their OLED plugin to be open source, as at the moment it is commercialised."
"Upgrades currently released as stacks when it should be a plugin or an extension to save removal and reinstallation."
"There isn't really a very good user experience. You need a lot of training."
"One limitation of Elastic Security is that it does not have built-in workflows for all tasks. For example, if you need a workflow for compliance, you will need to create a custom workflow."
"It's a little bit of a learning curve to understand the logic of searching for things and trying to find what you're looking for in Elastic Security."
"They don't provide user authentication and authorisation features (Shield) as a part of their open-source version."
"In terms of what could be improved with Elastic, in some use cases, especially on the advanced level, they are not ready made, so you'll have to write some scripts."
"Authentication is not a default in Kibana. We need to have another tool to have authentication and authorization. These two should be part of Kibana."
"It should have customized reports as well. While it currently has them, you need to write a script which is not straightforward."
"It will be better if behavior or indicators of compromise were on the same licensing schema. Currently, it is an advanced feature that you have to purchase as an add-on. This is the reason we're trying to do the ELK so that we can integrate them and create those rules by using open-source software. It will also be better if it has some more integration with IT service management tools so that we can do endpoint protection and response based on those indicators of compromise or those behavior analysis rules that create events that can automatically flow. We can inject that data into a service incident ticket on our IT service management tool, and that way we can assign the ticket to the proper teams and respond right away. Currently, we only have integration with ServiceNow."
"The setup of the solution can be improved because it is currently complex."
"The solution should be more price competitive."
"The UI can be more user-friendly for new users."
"Fortinet FortiAnalyzer should come bundled with other Fortinet solutions. Additionally, the performance and updates could improve. They need to test their updates better so there are not as many bugs."
"We are concerned about the compliance of our policy and institutional philosophy."
"We'd like to see more embedded features."
Elastic Security is ranked 5th in Log Management with 59 reviews while Fortinet FortiAnalyzer is ranked 8th in Log Management with 85 reviews. Elastic Security is rated 7.6, while Fortinet FortiAnalyzer is rated 8.0. The top reviewer of Elastic Security writes "A stable and scalable tool that provides visibility along with the consolidation of logs to its users". On the other hand, the top reviewer of Fortinet FortiAnalyzer writes "We can automate event-based handling solutions, is stable, and is great for heavy traffic". Elastic Security is most compared with Wazuh, Splunk Enterprise Security, Microsoft Sentinel, IBM Security QRadar and ArcSight Logger, whereas Fortinet FortiAnalyzer is most compared with Wazuh, Splunk Enterprise Security, Graylog, Grafana Loki and syslog-ng. See our Elastic Security vs. Fortinet FortiAnalyzer report.
See our list of best Log Management vendors.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.