Fortinet FortiWeb is praised for its top-tier security solutions, advanced functionality, and ease of use, although it could benefit from improvements in UI and integration with other tools. On the other hand, users find Prisma Cloud to offer competitive pricing, comprehensive security capabilities, and effective customer service, although some suggest improvements in UI, integration, and documentation.
The summary above is based on 139 interviews we conducted recently with Fortinet FortiWeb and Prisma Cloud by Palo Alto Networks users. To access the review's full transcripts, download our report.
"FortiWeb's ease of deployment is what we liked the most about it. Implementing FortiWeb was extremely fast and easy, which was a significant advantage. It comes with several preconfigured rule sets and templates."
"SSL Offloading simplifies the public certificate handling and brings additional protection features."
"It is a stable product."
"This product is very user-friendly."
"The deployment was very easy."
"It is easy to install and to maintain."
"The ease of configuration is valuable. We have Azure WAF, we have OCI WAF, and we also have Cloud Armor for GCP, but their configuration isn't very easy. It's pretty simple in FortiWeb, and we can enable or configure whatever we want."
"Banks have to be compliant with PCI and other things, and FortiWeb is absolutely amazing in terms of providing these reports. Otherwise, they will have to spend a lot of time on them."
"The support is excellent."
"It provides good visibility and control regardless of the complexity."
"You can also integrate with Amazon Managed Services. You can also get a snapshot in time, whether that's over a 24-hour period, seven days, or a month, to determine what the estate might look like at a certain point in time and generate reports from that for vulnerability management forums."
"The initial setup is seamless."
"Prisma Cloud also provides the visibility and control you need, regardless of how complex or distributed your cloud environments become. It helps to simplify that complexity. Now we know what the best practices are, and if something is missing we know."
"It helps to identify the misconfigurations by monitoring regularly which helps to secure the organization's cloud environment."
"The most valuable feature is the continuous cloud compliance monitoring and alerting."
"Most of the customers we are tackling have different tools and solutions, like Qualys, Nessus, and vulnerability management assessment solutions. There are plugins for them, and we can integrate Prisma Cloud with them. We can enrich our telemetry with their data and use the predefined correlation rules in Prisma Cloud. That means we have that work done in seconds."
"The solution could improve by being able to handle different use cases."
"I would like to see the Application Delivery Control (ADC) and Web Application Firewall (WAF) combined in one device."
"Lacks a VM demo to enable testing prior to purchase."
"The documentation for the machine learning could be better."
"The initial setup in our data center was somewhat complex."
"Describing security rules should be improved. It's tricky to define new feature tools when you want to describe an attack pattern and want to block it."
"We use Kubernetes, so I would like to have a plugin to configure FortiWeb Cloud automatically using Kubernetes Ingress. That would reduce the complexity of setting up an Ingress object in Kubernetes. Some competing solutions help you configure Ingress and Kubernetes automatically."
"Fortinet FortiWeb needs to improve the way it's configured. Common services like publishing exchange should be done in one click only."
"There is room for improvement on the logging and monitoring front because it's still not as holistic as I would want it to be."
"The licensing is a bit confusing."
"The innovation side of the solution could be more efficient and more detailed."
"We'd like to have more native integration with clouds and additional security checks in the future."
"I have some challenges customizing and personalizing some of the capabilities in the CSPM in terms of new policies and services. We have to reconfigure and rebuild the CSPM."
"A better correlation between the multiple products Prisma Cloud contains would be crucial. It would reduce the time spent looking at reports and enable you to get all the actionable insights across products. I think that Palo Alto is working on it, but they need to work faster because it doesn't make sense to have all these products in a single pane of glass without any correlation between them."
"It's not really on par with, or catering to, what other products are looking at in terms of SAST and DAST capabilities. For those, you'd probably go to the market and look at something like Veracode or WhiteHat."
"We had some teething issues with Prisma Cloud by Palo Alto Networks, but overall, it did what we expected."
More Prisma Cloud by Palo Alto Networks Pricing and Cost Advice →
Fortinet FortiWeb is ranked 4th in Web Application Firewall (WAF) with 83 reviews while Prisma Cloud by Palo Alto Networks is ranked 5th in Web Application Firewall (WAF) with 82 reviews. Fortinet FortiWeb is rated 8.0, while Prisma Cloud by Palo Alto Networks is rated 8.4. The top reviewer of Fortinet FortiWeb writes "Cost-effective, easy to configure, and works very well as a single solution for multiple environments". On the other hand, the top reviewer of Prisma Cloud by Palo Alto Networks writes "The dashboard is very user-friendly and can be used to generate custom RQL based on user requirements". Fortinet FortiWeb is most compared with F5 Advanced WAF, Fortinet FortiADC, AWS WAF, Azure Web Application Firewall and Imperva Web Application Firewall, whereas Prisma Cloud by Palo Alto Networks is most compared with Wiz, Microsoft Defender for Cloud, Aqua Cloud Security Platform, AWS Security Hub and CrowdStrike Falcon Cloud Security. See our Fortinet FortiWeb vs. Prisma Cloud by Palo Alto Networks report.
See our list of best Web Application Firewall (WAF) vendors.
We monitor all Web Application Firewall (WAF) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.