We performed a comparison between Fortinet FortiSIEM and Nagios XI based on real PeerSpot user reviews.
Find out in this report how the two Security Information and Event Management (SIEM) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."Sentinel uses Azure Logic Apps for automation, which is really powerful. This allows us to easily automate responses to incidents."
"The analytic rule is the most valuable feature."
"We didn't have anything similar. So, it really provides value from the incidents and automation point of view. The overview of the security fabric is most valuable."
"Mainly, this is a cloud-native product. So, there are zero concerns about managing the whole infrastructure on-premises."
"The part that was very unexpected was Sentinel's ability to integrate with Azure Lighthouse, which, as a managed services solution provider, gives us the ability to also manage our customers' Sentinel environments or Sentinel workspaces. It is a big plus for us. With its integration with Lighthouse, we get the ability to monitor multiple workspaces from one portal. A lot of the Microsoft Sentinel workbooks already integrate with that capability, and we save countless amounts of money by simply being able to almost immediately realize multitenant capabilities. That alone is a big plus for us."
"It is able to connect to an ever-growing number of platforms and systems within the Microsoft ecosystem, such as Azure Active Directory and Microsoft 365 or Office 365, as well as to external services and systems that can be brought in and managed. We can manage on-premises infrastructure. We can manage not just the things that are running in Azure in the public cloud, but through Azure Arc and the hybrid capabilities, we can monitor on-premises servers and endpoints. We can monitor VMware infrastructure, for instance, running as part of a hybrid environment."
"The AI capability is one of the main features of the solution because I believe that in the market, there are few solutions that are providing security solutions based on AI and machine learning."
"Azure Application Gateway makes things a lot easier. You can create dashboards, alert rules, hunting and custom queries, and functions with it."
"Easy alert setup which enables different alerts in different categories."
"Real-time monitoring makes life quite easy for me."
"The advanced agents used to collect logs have been most valuable. We have also made use of the advanced intelligence this solution offers."
"I like FortiSIEM because it integrates natively with our other Fortinet solutions and the Fortinet Fabric, but it also integrates with Cisco, Palo Alto and other security fabrics."
"There are things like dashboards and reports (pre-configured and custom) that let me know that things are operating the way they should be, and when they are not."
"The Threat Hunting feature provides complete traffic analysis."
"Fortinet FortiSIEM needs to provide better API integrations to users."
"The event correlation is pretty robust. The GUI is pretty good."
"Nagios XI is a simple monitoring tool with performance management."
"The ability to set up templates and groups of checks, as well as customize the checks themselves."
"This is a very good solution and it is simple to use, for any company."
"The most valuable feature is the monitoring of processes."
"The dashboard allows you to see what's going on in the overall system."
"The most useful aspect of this solution is the ability to customize it for the client agent."
"It is an open-source platform with valuable features for performance and stability."
"The most valuable feature is the dashboard, where I can have a single screen that provides a summary for hundreds of servers."
"If Sentinel had a graphical user interface, it would be easier to use. I would also like it to be more customizable."
"Sentinel's alerts and notifications are not fully optimized for mobile devices. The overall reporting and the analytics processes for the end user should also be improved. Also, the compatibility and availability of data sources and reports are not always perfect."
"The playbook development environment is not as rich as it should be. There are multiple occasions when we face problems while creating the playbook."
"One key area that can be improved is by building a strong integration with our XDR platform."
"Add more out-of-the-box connectors with other SaaS platforms/applications."
"Its implementation could be simpler. It is not really simple or straightforward. It is in the middle. Sometimes, connectors are a little bit complex."
"The AI capabilities must be improved."
"They need to work with other security vendors. For example, we replaced our email gateway with Symantec, but we couldn't collect these logs with Azure Sentinel. Instead of collecting these logs with Azure Sentinel, we are collecting them on Qradar. We couldn't do it with Sentinel, which is a problem for us."
"The biggest thing that could be better is a quicker response to support cases."
"The solution needs to do a better job with third party integration. Right now, that's lacking on the solution. I specifically am talking about the AWS environment. Most of the AWS environment products do not have that capability to integrate."
"The support of the product changed recently, and I don't think it's for the better. They should work to improve the support they offer to clients."
"An improvement would be if FortiSIEM's licensing was based on the number of nodes rather than the EPS."
"Sometimes, if there are changes made by a user on a database server, it can be difficult to get that information on the fly. I would like to see a situation where once I specify a user with the database server I need, and with the changes they have performed on that, I don't need to continue my search pattern to drill down just to get the information."
"Network detection and response is a separate product."
"Fortinet FortiSIEM needs to provide better API integrations to users."
"It's difficult to integrate unsupported devices with FortiSIEM compared to QRadar. It's easier to integrate and develop processes in QRadar. It's harder to develop a custom process in FortiSIEM."
"Technical support is an area that needs improvement. It is not available 24/7."
"Nagios XI can improve its GUI for users with a new look."
"The product's stability could be even better."
"I would like to see more customization in the network map because it is a bit tricky to use it."
"Open-source software is usually not user-friendly."
"Improve the documentation, examples, and best practices, therefore users can understand how to do things."
"The way Nagios displays information isn't easy for a new user to understand. It's not intuitive enough. You need to read some tutorials or be trained to understand what it's displaying. Also, I think it needs more features to improve network visibility because there are some things you can't detect."
"The interface could be more user-friendly."
Fortinet FortiSIEM is ranked 9th in Security Information and Event Management (SIEM) with 65 reviews while Nagios XI is ranked 9th in IT Infrastructure Monitoring with 54 reviews. Fortinet FortiSIEM is rated 7.6, while Nagios XI is rated 8.2. The top reviewer of Fortinet FortiSIEM writes "It's cheaper than other solutions with the same features but lacks integration with many third-party vendors". On the other hand, the top reviewer of Nagios XI writes "Great for monitoring IT services infrastructure with nice tools and helpful notifications". Fortinet FortiSIEM is most compared with IBM Security QRadar, Splunk Enterprise Security, Wazuh, LogRhythm SIEM and ThousandEyes, whereas Nagios XI is most compared with Nagios Core, Zabbix, PRTG Network Monitor, Wireshark and Icinga. See our Fortinet FortiSIEM vs. Nagios XI report.
We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.