We performed a comparison between Fortinet FortiWeb and Qualys VMDR based on real PeerSpot user reviews.
Find out what your peers are saying about Amazon Web Services (AWS), F5, Microsoft and others in Web Application Firewall (WAF)."The solution is stable."
"Both the internal firewall management and the cloud can be managed by a single console."
"The initial setup is pretty straightforward."
"Fortinet is a great SD-WAN player when it comes to security capabilities."
"The most valuable feature of Fortinet FortiWeb is the ease of integration and configuration."
"It is a stable product."
"The solution is easy to configure and deploy."
"FortiWeb offers machine learning in the latest product. This fixed many problems. There are no false negatives."
"The biggest benefit is from a security operations perspective, where we are able to drive our security posture upwards by remediating any discovered vulnerabilities."
"They also have threat detection which maps threats. There is a feed that comes from Qualys when a new vulnerability is found. It tells us which machines are infected with that vulnerability."
"The process of defining and discovering scans is organized efficiently."
"It's a good product. After the scan our internet works well. It scans our security posture."
"It's very configurable to adjust impact to systems."
"The reporting functionality is great."
"The most valuable features are vulnerability scanning, policy compliance scanning, and tablet for web application scanning."
"The integrations for this solution are very good. I use a different product for virtual patching of vulnerabilities and Qualys integrates well with that product."
"We have had problems with deployments where we've had to contact technical support to resolve them."
"Centralized configuration using FortiManager – like what exists for NGFW FortiGate appliances - would improve the configuration."
"The solution is rather complicated. If you know what to do, it's not bad, but it's complicated for a first time user to configure the solution. What I'd like to improve are the custom signatures."
"It costs too much."
"The integration with other products should be improved."
"The support side of things can be improved."
"I would like to see more improvements with respect to threat intelligence."
"Another area for improvement is logging. When troubleshooting, the logs sometimes take a while to update. We've had people report that some things aren't logged if they're successful. It's a bit hit-and-miss. For example, sometimes people access one of our services, and it's successful, but we don't see that in the logs."
"One of the biggest issues from the clients' perspective is that all Qualys computing is on the cloud."
"Qualys currently does not have any features for scanning SCADA, IoT, and Industrial Control Systems."
"They have integrated with other third parties, but it is still not viable."
"The solution is a bit expensive if you do not have access to discounts."
"We face issues while scanning multiple assets."
"It is a struggle to be able to pull our report and to be able to do onboarding using automated tools."
"There needs to be better documentation."
"Qualys VM's vulnerability scan could be improved, especially the number of CVE numbers it can manage at a time."
Fortinet FortiWeb is ranked 4th in Web Application Firewall (WAF) with 83 reviews while Qualys VMDR is ranked 3rd in Risk-Based Vulnerability Management with 77 reviews. Fortinet FortiWeb is rated 8.0, while Qualys VMDR is rated 8.2. The top reviewer of Fortinet FortiWeb writes "Cost-effective, easy to configure, and works very well as a single solution for multiple environments". On the other hand, the top reviewer of Qualys VMDR writes "Good visibility but expensive and needs better support". Fortinet FortiWeb is most compared with F5 Advanced WAF, Fortinet FortiADC, AWS WAF, Azure Web Application Firewall and Imperva Web Application Firewall, whereas Qualys VMDR is most compared with Tenable Nessus, Tenable Security Center, Rapid7 InsightVM, Microsoft Defender Vulnerability Management and Tenable Vulnerability Management.
We monitor all Web Application Firewall (WAF) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.