We performed a comparison between Fortinet FortiSIEM and Nagios XI based on real PeerSpot user reviews.
Find out in this report how the two Security Information and Event Management (SIEM) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."What is most useful, is that it has a good connection to the Microsoft ecosystem, and I think that's the key part."
"We have no complaints about the features or functionality."
"I like the KQL query. It simplifies getting data from the table and seeing the logs. All you need to know are the table names. It's quite easy to build use cases by using KQL."
"The data connectors that Microsoft Sentinel provides are easy to integrate when we work with a Microsoft agent."
"It's pretty powerful and its performance is pretty good."
"I like the unified security console. You can close incidents using Sentinel in all other Microsoft Security portals, when it comes to incident response."
"The most valuable feature is the alert notifications, which are categorized by severity levels: informational, low, medium, and high."
"It is always correlating to IOCs for normal attacks, using Azure-related resources. For example, if any illegitimate IP starts unusual activity on our Azure firewall, then it automatically generates an alarm for us."
"FortiSIEM's best features are the dashboards and customization."
"Analytics is the most valuable feature. The business service summaries in the dashboards and the correlations for the SIEM are also valuable features."
"It's easy to manage. There's a web interface and a command line, depending on what the user is comfortable with. There's a large knowledge base available, and the support is timely."
"The most valuable feature is the dashboard. CMDB database collects data from a lot of pre-configured devices."
"Both the collecting logs and duo correlation are valuable features for us."
"The most valuable features of Fortinet FortiSIEM are the SD-WAN, Global LAN, and application controls."
"The stability is very reliable. It offers very good performance."
"The product's initial setup phase was easy."
"This is a very good solution and it is simple to use, for any company."
"It's great for monitoring IT services infrastructure."
"The features I've found the most useful are the plug-ins, the fact that you can connect almost everything to it. That's very useful."
"The most useful aspect of this solution is the ability to customize it for the client agent."
"The most valuable feature is its support for different types of devices, where it can use all of the equipment that you need."
"Nagios XI helped me to draw the network and check for system failures."
"The most valuable feature is the monitoring of processes."
"An excellent solution that is easy and intuitive to implement."
"The on-prem log sources still require a lot of development."
"When it comes to ingesting Azure native log sources, some of the log sources are specific to the subscription, and it is not always very clear."
"There are certain delays. For example, if an alert has been rated on Microsoft Defender for Endpoint, it might take up to an hour for that alert to reach Sentinel. This should ideally take no more than one or two seconds."
"Some of the data connectors are outdated, at least the ones that utilize Linux machines for log forwarding. I believe that Microsoft is already working on improving this."
"Sentinel should be improved with more connectors. At the moment, it only covers a few vendors. If I remember correctly, only 100 products are supported natively in Sentinel, although you can connect them with syslog. But Microsoft should increase the number of native connectors to get logs into Sentinel."
"The solution should allow for a streamlined CI/CD procedure."
"The playbook is a bit difficult and could be improved."
"The solution could be more user-friendly; some query languages are required to operate it."
"Patching is not great - we're not getting the support we'd expect."
"The biggest thing that could be better is a quicker response to support cases."
"Its training can be improved. Its price also needs to be improved."
"It's difficult to integrate unsupported devices with FortiSIEM compared to QRadar. It's easier to integrate and develop processes in QRadar. It's harder to develop a custom process in FortiSIEM."
"We need to see incident reports about the event log, without events from the administrator or through human interaction."
"An improvement would be if FortiSIEM's licensing was based on the number of nodes rather than the EPS."
"Fortinet FortiSIEM could improve to extend to several locations or sites."
"Their product support, in general, is not that great. The product support is in the same ecosystem. Their support is improving but it's not that great.vvv"
"Technical support is an area that needs improvement. It is not available 24/7."
"The installation and monitoring need improvement."
"The PNP4Nagios plugin not working easily with XI is an issue for me, because some open source monitoring plugins do not work out of the box. But in the end, you learn to live with it."
"The pricing has recently risen. I know they've changed what is covered under the license, however, it doesn't change the way we use it and adds nothing to our experience, and yet we now have to pay more."
"The product's stability could be even better."
"The technical support is variable - sometimes I get answers, but most of my tickets go unanswered."
"I would like a much easier GUI so that I can delete events and logs, which will free up a lot of space."
"Nagios XI can improve its GUI for users with a new look."
Fortinet FortiSIEM is ranked 9th in Security Information and Event Management (SIEM) with 63 reviews while Nagios XI is ranked 7th in IT Infrastructure Monitoring with 54 reviews. Fortinet FortiSIEM is rated 7.6, while Nagios XI is rated 8.2. The top reviewer of Fortinet FortiSIEM writes "It's cheaper than other solutions with the same features but lacks integration with many third-party vendors". On the other hand, the top reviewer of Nagios XI writes "Great for monitoring IT services infrastructure with nice tools and helpful notifications". Fortinet FortiSIEM is most compared with IBM Security QRadar, Splunk Enterprise Security, LogRhythm SIEM, Wazuh and ThousandEyes, whereas Nagios XI is most compared with Zabbix, Nagios Core, PRTG Network Monitor, Icinga and Wireshark. See our Fortinet FortiSIEM vs. Nagios XI report.
We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.