Fortinet FortiAnalyzer is a powerful platform used for log management, analytics, and reporting. The solution is designed to provide organizations with automation, single-pane orchestration, and response for simplified security operations, as well as proactive identification and remediation of risks and complete visibility of the entire attack surface.
Fortinet FortiAnalyzer Features
Fortinet FortiAnalyzer has many valuable key features. Some of the most useful ones include:
- Advanced threat detection capabilities
- Centralized security analytics
- End-to-end security posture awareness
- Integration with FortiGate NGFWs, FortiClient, FortiSandbox, FortiWeb, and FortiMail
- Incident detection and response
- Playbook automation
- Event management
- Security services
- Analytics and reporting
Fortinet FortiAnalyzer Benefits
There are many l benefits to implementing Fortinet FortiAnalyzer. Some of the biggest advantages the solution offers include:
- Flexible deployment options
- Enterprise-grade high availability
- Security automation to reduce complexity, leveraging REST API, scripts, connectors, and automation stitches
- Multi-tenancy solution with quota management, leveraging (ADOMs) to separate customer data and manage domains for operational effectiveness and compliance
Reviews from Real Users
Below are some reviews and helpful feedback written by PeerSpot users currently using the Fortinet FortiAnalyzer solution.
PeerSpot user Imad A., Group IT Manager at a manufacturing company, says, “You can monitor all appliances from a centralized location. You have a front dashboard for all our operations and all the logs. If you need to search for anything you can just dig deep into the logs. The solution offers excellent customizable reports. In our case, we needed a monthly report of all internet consumption, and we were able to easily create this.” He goes on to add, “There are pre-defined templates. The logs cover any question or need that we populate within these templates. However, you can also build your own template. There is great analytics that can be used in different departments. For example, our marketing department can go more into media patterns and not just into browsing patterns. Everything is easily visible and can be tracked and studied.”
Luis G., Systems Architect at Zentius, mentions, “Log collection is the most valuable [feature]. The UI looks great. It has a very good look and feel. We don't have the need to use solid state drives. We use mechanic drives, and we don't see any performance issues, so basically, it is doing fine.”
Rupsan S., Technical Presales Engineer at Dristi Tech Pvt.ltd., comments, "The feature that I have found the most valuable is to be able to see everything in our network in a single task. A single menu and the graphical bar charts that it provides to give insights are very useful. It also gives very good metrics on bandwidth utilization, CPU, and device performance. It is very simple and easy to use as well."
Dilip S., Regional Head at Mass Infonet (P) Ltd., explains, “With FortiAnalyzer, you can see what the user is doing and what sites he goes to. You can also see how much quota there is and how much (size-wise) you want to hit, as well as what the incoming or outbound traffic is, and if it is through the ISP or not. Basically, you can see absolutely all activity using FortiAnalyzer. The solution is very complete. The product is very simple to use. It's regularly updated with many versions constantly adding more content and information. The solution has sandboxing, IPS, and DPS as well. The solution allows for a lot of customization.”
ManageEngine FileAudit Plus is an agent-based file auditing and reporting software. Monitor in real-time the changes to all files in the file system along with thorough reports on every activity as to 'who' did 'what', 'when' and 'from where'. Keep track of changes made to the files, file objects in the folders or sub-folders and shares. Watch out for any changes made to a particular type of file (for e.g. *.log) or choose to exclude servers and file types.
Any good organization's security policies would recommend the use of a real-time file monitoring tool to continuously monitor the system files and Compliance standards like PCI DSS (11.5), Sarbanes-Oxley (Section 404), FISMA (NIST SP800-53) specifically regulate the need to perform periodic checks for any unauthorized modification of critical files on Windows File servers (system files, configuration files or text files; and ensure a reporting activity for periodic security analysis or for forensics in the event of a security breach.
With FileAudit Plus, keep a detailed record of every file access and activity, get email alerts for critical / unusual activities, monitor file permissions, identify file owners and meet Compliance requirements.