We performed a comparison between Cisco Defense Orchestrator and Fortinet FortiGate Cloud based on real PeerSpot user reviews.
Find out what your peers are saying about AlgoSec, Tufin, Palo Alto Networks and others in Firewall Security Management."When we're looking to the policies, it identifies the shadow rules. It notifies us about anything that will supersede other rules."
"We use a lot of image upgrades. We take some 20 devices and then we update everything at once, including the policies. We apply policies for groups. For certain groups, like anti-viruses, we send out policies and apply them to every single device. It's really easy and simple."
"The most valuable feature is the Intrusion prevention."
"The most valuable feature is that you can push one policy or one rule out to several devices at a time."
"The most valuable feature is being able to do centralized upgrades on the ASAs. We can select all of those ASAs, and say, "Upgrade these ASAs at this scheduled time." It will copy down the ASA image, ASDM image, and then do the upgrade and failovers, and then put it all back into service as required at a scheduled time. It automates that process for us."
"The bulk changes feature is definitely the most valuable."
"The initial setup was straightforward. We spun up the VM onsite. We generated the key that it needed to talk to the Cloud Orchestrator. After that, as I started adding devices, it was relatively quick and easy."
"The ability to do operations on multiple firewalls at once is valuable because it saves time and mental effort. The solution's ability to make bulk changes makes it very convenient to manage things at once on multiple targets."
"It's easy to use."
"It covers all needs of our customers and works well. It is also easy to deploy and troubleshoot."
"It's user-friendly."
"Fortinet FortiGate Cloud has good pricing compared to other firewall and security products."
"It’s easy to implement."
"This is a vast system that includes a lot of features."
"Fortinet FortiGate Cloud has security features like DDoS protection and UTM."
"Everything is valuable, especially the SD-WAN tunneling, filtering of email, application, and browsing. Everything has value."
"The dashboard needs to be more customizable to provide better reporting for our network."
"If I make a change locally to the firewall, CDO gives an alarm or an error message and says there's a change in compliance: "The firewall has this configuration but the last time it was compiled it had that configuration." That view of new changes versus the old could be better... I had to log in manually, locally on the firewall, to check which version, which configuration was actually running. I couldn't see it in CDO."
"It would be a better product if it incorporated device control for third-party products easily."
"I've found dozens of bugs over the year we've been using it. The more I use it for different things, the more problems I find... Most of the problems have to do with the user interface. A lot of thought and work has gone into the back-end component to make the product do what it's intended to do, but the way it is presented for use hasn't gotten nearly as much thought to make it smart and bug-free."
"There could be some slight improvements to navigation. In some of the navigation you've got to go back to be able to get into where you need to be once you've made a change. If I make a change, I've then got to go back to submit and send the change."
"Cisco Defense Orchestrator can improve by providing more support for third-party security components."
"When logging into the device, we sort of had problems with it staying in sync. If somebody made a change onsite, it wouldn't do an automatic sync. It would have to wait, as you would have to do a manual sync up."
"I'd like CDO to be the one-stop-shop where we could do all the configurations easily. It would be nice, for ASA upgrades, if we could do them from a central repository and not have to reach out to Cisco. That would be a definite plus."
"The only area that requires improvement is the login reports. We aim to integrate it with our local mobile service provider."
"When we're upgrading, it's sometimes quite challenging, especially firmware. We usually don't upgrade unless we have a bug, and we still feel it's not safe to react instead of being proactive. We often have some delays when updating FortiGuard, too."
"Lacks some security against external attacks."
"As with any IT vendor, there are software issues."
"FortiGate Cloud could be improved with increased granularity for our control."
"Fortinet FortiGate Cloud could improve the dashboards."
"They're still trying to digest that Meru acquisition and need a plan."
"The solution should include a commit button that allows for review of changes and deployments before they are submitted."
Earn 20 points
Cisco Defense Orchestrator is ranked 14th in Firewall Security Management while Fortinet FortiGate Cloud is ranked 5th in Firewall Security Management with 55 reviews. Cisco Defense Orchestrator is rated 8.2, while Fortinet FortiGate Cloud is rated 8.2. The top reviewer of Cisco Defense Orchestrator writes "Provides visibility into entire infrastructure and bulk changes save time and resources". On the other hand, the top reviewer of Fortinet FortiGate Cloud writes "Useful for routing and cloud security purposes but needs to incorporate XDR capabilities ". Cisco Defense Orchestrator is most compared with AlgoSec, Palo Alto Networks Panorama, Tufin Orchestration Suite, Azure Firewall Manager and Cisco Secure Firewall Management Center, whereas Fortinet FortiGate Cloud is most compared with Fortinet FortiManager, AWS Firewall Manager, Palo Alto Networks Panorama, FortiGate Cloud-Native Firewall (FortiGate CNF) and Fortinet FortiPortal.
See our list of best Firewall Security Management vendors.
We monitor all Firewall Security Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.