We performed a comparison between Fortinet FortiSIEM and Meraki Dashboard based on real PeerSpot user reviews.
Find out in this report how the two Security Information and Event Management (SIEM) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The automation rules and playbooks are the most useful that I've seen. A number of other places segregate the automation and playbook as separate tools, whereas Microsoft is a SIEM and SOAR tool in one."
"Sentinel has an intuitive, user-friendly way to visualize the data properly. It gives me a solid overview of all the logs. We get a more detailed view that I can't get from the other SIEM tools. It has some IP and URL-specific allow listing"
"Microsoft Sentinel comes preloaded with templates for teaching and analytics rules."
"The UI of Sentinel is very good and easy to use, even for beginners."
"Sentinel's most important feature is the ability to centralize all the logs in one place. There's no need to search multiple systems for information."
"Sentinel is a Microsoft product, so they provide very robust use cases and analytic groups, which are very beneficial for the security team. I also like the ability to integrate data sources into the software for on-premise and cloud-based solutions."
"We can use Sentinel's playbook to block threats. It covers all of the environment, giving us great visibility."
"The most valuable feature is the UEBA. It's very easy for a security operations analyst. It has a one-touch analysis where you can search for a particular entity, and you can get a complete overview of that entity or user."
"It gives us the opportunity to generate notifications based upon rules that get triggered, and the rules could be specific to PCI, HIPAA, GIBA, NIST, and so forth."
"The most valuable feature of Fortinet FortiSIEM is the user and entity behave as analytics(UEBA). This feature mixes your data and provides useful information based on the behavior of the targeted."
"The seamless integration with FortiGate is the solution's most valuable aspect."
"It's easy to manage. There's a web interface and a command line, depending on what the user is comfortable with. There's a large knowledge base available, and the support is timely."
"I like FortiSIEM because it integrates natively with our other Fortinet solutions and the Fortinet Fabric, but it also integrates with Cisco, Palo Alto and other security fabrics."
"It is used as an alerting platform."
"Some of our customers who use this solution have seen improvement in their connection with load balancing on both connections."
"The ability to write my own parsers for the devices that are not supported by Fortinet is the most valuable feature."
"The solution scales well."
"The initial setup was easy."
"It's a simple, functional solution."
"You don't have to be a network engineer to use it."
"Great visibility on the dashboard."
"An excellent dashboard that is currently unique in covering both SD-WAN and SD-LAN with built-in security."
"I would say the ease of use is the most valuable feature. It's very easy to set up and get up and running."
"There is no need to swap the hardware at all the locations, and importing the APs into the Dashboard was a simple and quick process."
"I would like to be able to monitor applications outside of the Azure Cloud."
"For certain vendors, some of the data that Microsoft Sentinel captures is redacted due to privacy reasons."
"They should integrate it with many other software-as-a-service providers and make connectors available so that you don't have to do any sort of log normalization."
"I think the number one area of improvement for Sentinel would be the cost."
"In terms of features I would like to see in future releases, I'm interested in a few more use cases around automation. I do believe a lot of automation is available, and more is in progress, but that would be my area of interest."
"We do have in-built or out-of-the-box metrics that are shown on the dashboard, but it doesn't give the kind of metrics that we need from our environment whereby we need to check the meantime to detect and meantime to resolve an incident. I have to do it manually. I have to pull all the logs or all the alerts that are fed into Sentinel over a certain period. We do this on a monthly basis, so I go into Microsoft Sentinel and pull all the alerts or incidents we closed over a period of thirty days."
"The solution could be more user-friendly; some query languages are required to operate it."
"We do see continuous improvement all the time, however, I haven't got a specific feature that is lacking or not well designed."
"It would be good if the solution offered even more configuration options, especially in relation to the VPN so that it continues to be a very flexible option."
"The nodes on our network did not comply with the SIEM solution. They use a different format parking log."
"I would like to see easier implementation in the future."
"The solution's interface could be modernized and improved."
"Not very good on non-API features, lacks that functionality."
"Fortinet FortiSIEM could improve by having a signature update."
"The support of the product changed recently, and I don't think it's for the better. They should work to improve the support they offer to clients."
"Does not have load-sharing or high-availability, and these are important things to implement. I can do the same things in another way, but not naturally having these features makes it complicated."
"The one issue that we have had is that the VPN tunnel would go down unless you worked out with the ISP that you would be using a static IP address on the WAN interface."
"The solution has a limited routing table and needs improvement by increasing the numbers as well as providing a summarization for the table."
"Not a lot of training is available."
"I think this product could be improved with a CLI for more directives."
"Meraki Dashboard could improve integration with non-Cisco platforms."
"The cost of the solution is high and can be improved."
"We would like to be able to test the health of WAN connections."
"There is a bit of a problem when you try to log in and you don't have a fixed IP address. If you're granting access, you need to log in by using the IP address. If your administrator's IP address is not a fixed IP address and it has changed, you might need to update the changed IP address in the interface. For this, you need to log in to the interface to update the IP address. This issue might not have so much to do with Meraki interface."
Fortinet FortiSIEM is ranked 9th in Security Information and Event Management (SIEM) with 65 reviews while Meraki Dashboard is ranked 9th in Network Monitoring Software with 51 reviews. Fortinet FortiSIEM is rated 7.6, while Meraki Dashboard is rated 8.6. The top reviewer of Fortinet FortiSIEM writes "It's cheaper than other solutions with the same features but lacks integration with many third-party vendors". On the other hand, the top reviewer of Meraki Dashboard writes "Incredibly easy to use, great troubleshooting and prevention of malicious events". Fortinet FortiSIEM is most compared with IBM Security QRadar, Splunk Enterprise Security, Wazuh, LogRhythm SIEM and Elastic Security, whereas Meraki Dashboard is most compared with Cisco DNA Center, SolarWinds NPM, ThousandEyes, Mist AI and Cloud and ManageEngine OpManager. See our Fortinet FortiSIEM vs. Meraki Dashboard report.
We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.