We performed a comparison between Elastic Security and Fortinet FortiAnalyzer based on our users’ reviews in five categories. After reading all of the collected data, you can find our conclusion below.
Features: Elastic Security is commended for its adaptability, extensive customization options, and seamless integration with the ELK Stack. Fortinet FortiAnalyzer features exceptional log collection capabilities and customizable reporting. Elastic Security could improve by reducing resource usage, automating threat response, and simplifying the user experience. FortiAnalyzer enables users to centrally manage and analyze logs in real time. Fortinet FortiAnalyzer could simplify its reporting module and cloud storage capabilities.
Service and Support: Some Elastic Security users found their support helpful, while others experienced difficulties and delays. Some Fortinet customers were dissatisfied with support, but others said it was helpful and responsive.
Ease of Deployment: Elastic Security generally has a straightforward setup but may require trained specialists. FortiAnalyzer's initial setup is uncomplicated and manageable, typically taking approximately 30 minutes to a few hours. Some IT knowledge may be required.
Pricing: Elastic Security is considered affordable and cost-effective, with pricing based on the size of the monitored environment. While FortiAnalyzer isn't the most expensive option, users say the pricing could be more competitive. FortiAnalyzer's cost depends on the storage requirements, and many customers consider it reasonable.
ROI: Elastic Security has shown mixed results in terms of ROI, with some users expressing concerns about the quality of their premium support. FortiAnalyzer helps customers by providing insight into network traffic and speeding up issue resolution.
"It's simple and easy to use."
"What customers found most valuable in Elastic Security feature-wise is the search capability, in particular, the way of writing the search query and the speed of searching for results."
"The most valuable feature is the machine learning capability."
"The most valuable feature is the ability to collect authentication information from service providers."
"Elastic has a lot of beats, such as Winlogbeat and Filebeat. Beats are the agents that have to be installed on the terminals to send the data. When we install beats or Elastic agents on every terminal, they don't overload the terminals. In other SIEM solutions such as Splunk or QRadar, when beats or agents are installed on endpoints, they are very heavy for the terminals. They consume a lot of power of the terminals, whereas Elastic agents hardly consume any power and don't overload the terminals."
"It's open-source and free to use."
"ELK documentation is very good, so never needed to contact technical support."
"It's very stable and reliable."
"It is a simple and solution."
"I like its simplicity. It is straightforward. We get reports and emails about the logs, and that's it."
"The ability to gather all gateway information and logs in a single location is the most valuable feature."
"FortiAnalyzer has a user-friendly interface with a quick response and good analytics. It's very secure because it's taking the log from the devices on a secure channel, so there is no problem with that in your network."
"Stability-wise, I rate the solution a ten out of ten since, in our company, we have never experienced the solution crashing or having any other issues."
"The reporting features, which offer customization, real-time insights, and compliance support, are particularly noteworthy aspects."
"Based on the logs of Fortinet FortiAnalyzer you can have it trigger actions. For example, if the log has a word or a sentence you specified it can send an alert or Syslog to an email address."
"The report templates are valuable. It works very well, and integrations also work well."
"Elastic Security has a steep learning curve, so it takes some time to tune it and set it up for your environment. There are some costs associated with logging things that don't have value. So you need to be cautious to only log things that make sense and keep them around for as long as you need. You shouldn't hold onto things just because you think you might need them."
"There isn't really a very good user experience. You need a lot of training."
"This solution cannot do predictive maintenance, so we have to build our own modules for doing it."
"Better integration with third-party APMs would be really good."
"Authentication is not a default in Kibana. We need to have another tool to have authentication and authorization. These two should be part of Kibana."
"The price of this product could be improved, especially the additional costs. I would also like to see better-quality graphics."
"I would like more ways to manage permissions and restrict access to certain users."
"If the documentation were improved and made more clear for beginners, or even professionals, then we would be more attracted to this solution."
"The technical support takes at least two days to reply on any ticket post raised on their website."
"They can include integration with devices, such as firewalls, endpoints, from other vendors. They can include graphic monitoring of everything in the network, not just Fortinet products. It would also be good to include customizable reports and customizable views of the reports."
"FortiAnalyzer only integrates with Fortinet solutions. That is a limitation because many organizations use multiple vendors. It's often a mixture of Cisco network hardware and equipment from other vendors, such as switches, access points, etc."
"The interface or GUI does not work properly on Microsoft Edge. The behavior or the view is different on Microsoft Edge versus on Chrome or Firefox. When some buttons do not work, I am forced to switch to Firefox."
"The support could be better for Fortinet FortiAnalyzer here in Mexico."
"The deployment is complex and has room for improvement."
"The deployment of Fortinet FortiAnalyzer is not complex, but integrating it with firewalls can take some time, depending on the number of firewalls."
"It's possible that they could add some advanced analytics and some proactive controls for logging analytics. That will help a lot."
Elastic Security is ranked 5th in Log Management with 58 reviews while Fortinet FortiAnalyzer is ranked 8th in Log Management with 81 reviews. Elastic Security is rated 7.6, while Fortinet FortiAnalyzer is rated 8.0. The top reviewer of Elastic Security writes "A stable and scalable tool that provides visibility along with the consolidation of logs to its users". On the other hand, the top reviewer of Fortinet FortiAnalyzer writes "We can automate event-based handling solutions, is stable, and is great for heavy traffic". Elastic Security is most compared with Wazuh, Splunk Enterprise Security, Microsoft Sentinel, IBM Security QRadar and ArcSight Logger, whereas Fortinet FortiAnalyzer is most compared with Wazuh, Splunk Enterprise Security, Graylog, Grafana Loki and syslog-ng. See our Elastic Security vs. Fortinet FortiAnalyzer report.
See our list of best Log Management vendors.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.