We performed a comparison between Fortinet FortiSIEM and LiveAction LiveNX based on real PeerSpot user reviews.
Find out what your peers are saying about Microsoft, Splunk, Wazuh and others in Security Information and Event Management (SIEM)."We have no complaints about the features or functionality."
"I've worked on most of the top SIEM solutions, and Sentinel has an edge in most areas. For example, it has built-in SOAR capabilities, allowing you to run playbooks automatically. Other vendors typically offer SOAR as a separate licensed solution or module, but you get it free with Sentinel. In-depth incident integration is available out of the box."
"We can use Sentinel's playbook to block threats. It covers all of the environment, giving us great visibility."
"Native integration with Microsoft security products or other Microsoft software is also crucial. For example, we can integrate Sentinel with Office 365 with one click. Other integrations aren't as easy. Sometimes, we have to do it manually."
"Sentinel's most important feature is the ability to centralize all the logs in one place. There's no need to search multiple systems for information."
"The most valuable feature is the alert notifications, which are categorized by severity levels: informational, low, medium, and high."
"Microsoft Sentinel provides the capability to integrate different log sources. On top of having several data connectors in place, you can also do integration with a threat intelligence platform to enhance and enrich the data that's available. You can collect as many logs and build all the use cases."
"I like the ability to run custom KQL queries. I don't know if that feature is specific to Sentinel. As far as I know, they are using technology built into Azure's Log Analytics app. Sentinel integrates with that, and we use this functionality heavily."
"FortiSIEM helped us discover all the threats at the time that were attacking the IT services of the company. We now have multiple-level authentication."
"FortiSIEM's best features are the dashboards and customization."
"To add workers and even collectors is pretty easy."
"We're able to get real-timec as well as our customer networks that we're monitoring at all times."
"One of the most valuable features is that we can combine SOC and NOC operations in the same tool. We can provide NOC and SOC services in the same tool for two separate teams. There are plenty of third-party solutions that integrate with FortiSIEM. All these solutions already have a ready integration, and we have the possibility to create a custom connector for these solutions. Its reports are also very good."
"We like the integration of all of these Fortinet platforms together. Everything is integrated well, and we are able to sell that as a service to our customers."
"FortiSIEM provides a single PIN to monitor SOC and NOC. It's a nice tool for integration and monitoring. It provides multiple categories for monitoring based on security designations like low, medium, and high."
"The product is quite well-organized. The GUI makes it easy to navigate."
"All in all, LiveAction LiveNX has become an indispensable tool for maintaining and improving our network's reliability and performance, ultimately supporting our organization's goal of providing timely and dependable delivery services."
"Its analytical capability is really good."
"The intention and the idea of the filter is great."
"One of the valuable features is the ability to create CLI scripts on the fly to fix any issues. We were using it for QoS modeling to ensure that we were properly modeling QoS, and it basically said here is what you need to fix to get this QoS done, whether it is ACL or something else. It would either push or recommend. If you have the right credentials, you could also push. It is very good if you are a Cisco shop. It gives you reporting, latency, and bandwidth utilization for your applications, so you can do good capacity management planning. There are a lot of pieces that LiveNX can give you. It is a total NPM solution for SD-WAN."
"The product has a very good graphical interface."
"We don't have any complaints about the software. According to my team, it's a very good tool that's very intuitive."
"The alerting feature is very good because it allows you to set MOS alerts at various network junctures or data points."
"There is room for improvement in entity behavior and the integration site."
"The playbook is a bit difficult and could be improved."
"In terms of features I would like to see in future releases, I'm interested in a few more use cases around automation. I do believe a lot of automation is available, and more is in progress, but that would be my area of interest."
"While I appreciate the UI itself and the vast amount of information available on the platform, I'm finding the overall user experience to be frustrating due to frequent disconnections and the requirement to repeatedly re-authenticate."
"The playbook development environment is not as rich as it should be. There are multiple occasions when we face problems while creating the playbook."
"I would like to be able to monitor applications outside of the Azure Cloud."
"We do see continuous improvement all the time, however, I haven't got a specific feature that is lacking or not well designed."
"The built-in SOAR is not really good out-of-the-box. The SOAR relies on logic apps and you almost need to have some kind of developer background to be able to make these logic apps. Most security people cannot develop anything..."
"Customer support service could be better."
"The backup and recovery process for this solution needs improvement."
"The nodes on our network did not comply with the SIEM solution. They use a different format parking log."
"Creating parsers to try make unknown events or currently unsupported devices produce meaningful information is extremely cumbersome."
"The process of installing Fortinet FortiSIEM and the customization of the alerts take too long."
"Does not have load-sharing or high-availability, and these are important things to implement. I can do the same things in another way, but not naturally having these features makes it complicated."
"We need to see incident reports about the event log, without events from the administrator or through human interaction."
"Their product support, in general, is not that great. The product support is in the same ecosystem. Their support is improving but it's not that great.vvv"
"Sometimes the solution does not register devices properly and that is a bug."
"They need to create a more simplified UI."
"This is a horrible solution and I think everything needs to be improved."
"The tool crashes sometimes when we try to pull reports simultaneously."
"It is not as robust as other NPM solutions. For instance, there is a problem while labeling specific applications. It works well with well-known applications, but when you have to put in new applications that are not very known and set them up with names, ports, URLs, or some protocols, it is not as intuitive."
"The only downside to this software is the price."
"Improved documentation and more responsive customer support can help in addressing issues faster."
Fortinet FortiSIEM is ranked 8th in Security Information and Event Management (SIEM) with 63 reviews while LiveAction LiveNX is ranked 55th in Network Monitoring Software with 7 reviews. Fortinet FortiSIEM is rated 7.6, while LiveAction LiveNX is rated 6.8. The top reviewer of Fortinet FortiSIEM writes "It's cheaper than other solutions with the same features but lacks integration with many third-party vendors". On the other hand, the top reviewer of LiveAction LiveNX writes "Greta visual analytics and real-time monitoring but requires better documentation". Fortinet FortiSIEM is most compared with IBM Security QRadar, Splunk Enterprise Security, LogRhythm SIEM, Wazuh and ThousandEyes, whereas LiveAction LiveNX is most compared with ThousandEyes, SolarWinds NPM, Cisco Secure Network Analytics, OmniPeek and NETSCOUT nGeniusONE.
We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
