We performed a comparison between Fortinet FortiSIEM and SolarWinds NetFlow Traffic Analyzer based on real PeerSpot user reviews.
Find out in this report how the two Security Information and Event Management (SIEM) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.
"Microsoft Sentinel comes preloaded with templates for teaching and analytics rules."
"The standout feature of Sentinel is that, because it's cloud-based and because it's from Microsoft, it integrates really well with all the other Microsoft products. It's really simple to set up and get going."
"Sentinel's most important feature is the ability to centralize all the logs in one place. There's no need to search multiple systems for information."
"The most valuable feature is the alert notifications, which are categorized by severity levels: informational, low, medium, and high."
"We are able to deploy within half an hour and we only require one person to complete the implementation."
"The most valuable features in my experience are the UEBA, LDAP, the threat scheduler, and integration with third-party straight perform like the MISP."
"The Log analytics are useful."
"One of the most valuable features of Microsoft Sentinel is that it's cloud-based."
"We have found the most important features in Fortinet FortiSIEM to be the correlation, file utility check, latest file, and hash changes. These features are important for us."
"We find the solution to be stable."
"Analytics. It can provide log information from the device. With log information, I can see if there is a threat"
"It gives us the opportunity to generate notifications based upon rules that get triggered, and the rules could be specific to PCI, HIPAA, GIBA, NIST, and so forth."
"FortiSIEM provides a single PIN to monitor SOC and NOC. It's a nice tool for integration and monitoring. It provides multiple categories for monitoring based on security designations like low, medium, and high."
"Fortinet FortiSIEM is easy to use."
"Both the collecting logs and duo correlation are valuable features for us."
"The most valuable feature is the dashboard. CMDB database collects data from a lot of pre-configured devices."
"This solution gives us important information about the utilization of protocols, particularly in terms of how often they are used."
"NTA's most valuable feature is traffic analysis and visibility."
"The most helpful feature of SolarWinds NetFlow Traffic Analyzer is bandwidth analysis, which lets you see who's hogging your network."
"For stability, I would give SolarWinds NetFlow Traffic Analyzer a rating of ten out of ten."
"As it offers enterprise solutions, it has all the essential features for business."
"The most valuable feature is the ability to look for any increases in bandwidth over time so that we can plan before it becomes critical."
"The performance analysis is a valuable feature. With the performance analyzer, we can see the realtime monitoring, the realtime performance, and historical performance on specific components like virtualization storage, CPU, servers and network equipment."
"The initial setup was straightforward."
"Currently, the watchlist feature is being utilized, and although there have been improvements, it is still not fully optimized."
"Sentinel still has some anomalies. For example, sometimes when we write a query for log analysis with KQL, it doesn't give us the data in a proper way... Also, the fields or columns could be improved. Sometimes, it is not giving the desired results and there is a blank field."
"Sentinel can be used in two ways. With other tools like QRadar, I don't need to run queries. Using Sentinel requires users to learn KQL to run technical queries and check things. If they don't know KQL, they can't fully utilize the solution."
"In terms of features I would like to see in future releases, I'm interested in a few more use cases around automation. I do believe a lot of automation is available, and more is in progress, but that would be my area of interest."
"The reporting could be more structured."
"The AI capabilities must be improved."
"Some of the data connectors are outdated, at least the ones that utilize Linux machines for log forwarding. I believe that Microsoft is already working on improving this."
"Microsoft Defender has a built-in threat expert option that enables you to contact an expert. That feature isn't available in Sentinel because it's a huge product that integrates all the technologies. I would like Microsoft to add the threat expert option so we can contact them. There are a few other features, like threat assessment that the PG team is working on. I expect them to release this feature in the next quarter."
"Areas for improvement would be the ease of use and the integration with Fortinet's own products."
"Their technical support is horrible. By horrible, I mean a train wreck of a disaster that has fallen off a bridge and caught fire."
"Fortinet FortiSIEM could improve by having better integration and extensions. This would benefit by allowing us to give more rules."
"When compared with some competitors, in terms of performance, the CPU and RAM requirements and the capability of coordination with development all need some improvement."
"The reporting feature is not very attractive for the upper management and I am not able to perform complex/nested queries."
"They need to integrate better with Cisco and Palo Alto."
"The interface needs some improvements because it's a bit cumbersome when you're trying to view items. It takes some time to get used to. Additionally, sometimes the scrolling does not work."
"The performance can be improved. Sometimes it takes a long time to fetch data."
"It is a scalable solution, but it is costly to scale. Therefore, I would rate scalability at eight out of ten."
"I would like to see more training videos and additional material for learning how to use this solution."
"The licensing should be more realistic so that we can adjust the number of nodes according to my needs, rather than in fixed increments."
"I'm expecting to see a little bit more artificial intelligence and machine learning algorithms. They need a bit more sophistication in that."
"Customer Support is quite complex."
"I would like to see more artificial intelligence capabilities."
"An area for improvement in SolarWinds NetFlow Traffic Analyzer is the dashboarding. The user interface also has room for improvement because it's currently clunky."
"It does not flow. It cannot do our metric performance monitoring. So it is very limited. They can do it but in a very limited fashion. It is only good for SNMP-based alerts."
More SolarWinds NetFlow Traffic Analyzer Pricing and Cost Advice →
Fortinet FortiSIEM is ranked 9th in Security Information and Event Management (SIEM) with 64 reviews while SolarWinds NetFlow Traffic Analyzer is ranked 6th in Network Traffic Analysis (NTA) with 34 reviews. Fortinet FortiSIEM is rated 7.6, while SolarWinds NetFlow Traffic Analyzer is rated 7.6. The top reviewer of Fortinet FortiSIEM writes "It's cheaper than other solutions with the same features but lacks integration with many third-party vendors". On the other hand, the top reviewer of SolarWinds NetFlow Traffic Analyzer writes "Displays traffic visibility and efficient traffic flows". Fortinet FortiSIEM is most compared with IBM Security QRadar, Splunk Enterprise Security, Wazuh, LogRhythm SIEM and ThousandEyes, whereas SolarWinds NetFlow Traffic Analyzer is most compared with Cisco Secure Network Analytics, Zabbix, ManageEngine NetFlow Analyzer, SolarWinds NPM and Arista NDR. See our Fortinet FortiSIEM vs. SolarWinds NetFlow Traffic Analyzer report.
We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
