We performed a comparison between Fortinet FortiSIEM and Nagios XI based on real PeerSpot user reviews.
Find out in this report how the two Security Information and Event Management (SIEM) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The Identity Behavior tab furnishes us with the entire history linked to each IP or domain that has either accessed or attempted to access our system."
"There are a lot of things you can explore as a user. You can even go and actively hunt for threats. You can go on the offensive rather than on the defensive."
"Sentinel improved how we investigate incidents. We can create watchlists and update them to align with the latest threat intelligence. The information Microsoft provides enables us to understand thoroughly and improve as we go along. It allows us to provide monthly reports to our clients on their security posture."
"I've worked on most of the top SIEM solutions, and Sentinel has an edge in most areas. For example, it has built-in SOAR capabilities, allowing you to run playbooks automatically. Other vendors typically offer SOAR as a separate licensed solution or module, but you get it free with Sentinel. In-depth incident integration is available out of the box."
"The UI of Sentinel is very good and easy to use, even for beginners."
"The automation rules and playbooks are the most useful that I've seen. A number of other places segregate the automation and playbook as separate tools, whereas Microsoft is a SIEM and SOAR tool in one."
"Previously, it was a little bit difficult to find where an incident came from, including which IP address and which country. So in Sentinel, it's very easy to find where the incident came from since we can easily get the information from the dashboard, after which we take action quickly."
"It's easy to use. It's a very good product. It can easily ingest data from anywhere. It has an easily understandable language to perform actions."
"The Threat Hunting feature provides complete traffic analysis."
"Both the collecting logs and duo correlation are valuable features for us."
"The product's initial setup phase was easy."
"The solution is easy to use and user-friendly."
"FortiSIEM is a great tool for making security processes transparent."
"We find the solution to be stable."
"The CMDB and the device discovery features are most valuable."
"The stability is very reliable. It offers very good performance."
"It's great for monitoring IT services infrastructure."
"The dashboard allows you to see what's going on in the overall system."
"The most valuable feature of Nagios XI is customization. We can customize based on our requirements. We can do modifications and implement a lot of scripts. Additionally, it is easy to use."
"You want to monitor a specific metric that nobody else has? You can do it even with the most basic of scripting skills, and you can always share it with the vast community of Nagios Exchange."
"The most valuable feature is the monitoring of processes."
"Nagios XI helped me to draw the network and check for system failures."
"The ability to set up templates and groups of checks, as well as customize the checks themselves."
"Nagios is a custom API manager, and we can expose custom APIs for our integration. This is a great feature."
"There are certain delays. For example, if an alert has been rated on Microsoft Defender for Endpoint, it might take up to an hour for that alert to reach Sentinel. This should ideally take no more than one or two seconds."
"They're giving us the queries so we can plug them right into Sentinel. They need to have a streamlined process for updating them in the tool and knowing when things are updated and knowing when there are new detections available from Microsoft."
"If you're looking to use canned queries, the interface could be a little more straightforward. It's not immediately intuitive regarding how you use it. You have to take a canned query and paste it into an operational box and then you hit a button... They could improve the ease of deploying these queries."
"There is some relatively advanced knowledge that you have to have to properly leverage Sentinel's full capabilities. I'm thinking about things like the creation of workbooks, how you do threat-hunting, and the kinds of notifications you're getting... It takes time for people to ramp up on that and develop a familiarity or expertise with it."
"If Azure Sentinel had the ability to ingest Azure services from different tenants into another tenant that was hosting Azure Sentinel, and not lose any metadata, that would be a huge benefit to a lot of companies."
"They can work on the EDR side of things... Every time we need to onboard these kinds of machines into the EDR, we need to do it with the help of Intune, to sync up the devices, and do the configuration. I'm looking for something on the EDR side that will reduce this kind of work."
"Currently, the watchlist feature is being utilized, and although there have been improvements, it is still not fully optimized."
"Add more out-of-the-box connectors with other SaaS platforms/applications."
"Their technical support is horrible. By horrible, I mean a train wreck of a disaster that has fallen off a bridge and caught fire."
"Does not have load-sharing or high-availability, and these are important things to implement. I can do the same things in another way, but not naturally having these features makes it complicated."
"The nodes on our network did not comply with the SIEM solution. They use a different format parking log."
"The stability of the product is an area of concern where improvements are required."
"The log collection and configuration management are not great."
"Areas for improvement would be the ease of use and the integration with Fortinet's own products."
"Our customers are noticing configuration available in the GUI interface and I think that they should be equal."
"The dashboard needs to improve."
"Open-source software is usually not user-friendly."
"It is really difficult to integrate Nagios XI with another system to generate logs and alert our management of failures in security infrastructure."
"The interface could be more user-friendly."
"The reporting structure could be more streamlined."
"Improve the documentation, examples, and best practices, therefore users can understand how to do things."
"Nagios XI can improve its GUI for users with a new look."
"The PNP4Nagios plugin not working easily with XI is an issue for me, because some open source monitoring plugins do not work out of the box. But in the end, you learn to live with it."
"Technical support is an area that needs improvement. It is not available 24/7."
Fortinet FortiSIEM is ranked 8th in Security Information and Event Management (SIEM) with 63 reviews while Nagios XI is ranked 8th in IT Infrastructure Monitoring with 54 reviews. Fortinet FortiSIEM is rated 7.6, while Nagios XI is rated 8.2. The top reviewer of Fortinet FortiSIEM writes "It's cheaper than other solutions with the same features but lacks integration with many third-party vendors". On the other hand, the top reviewer of Nagios XI writes "Great for monitoring IT services infrastructure with nice tools and helpful notifications". Fortinet FortiSIEM is most compared with IBM Security QRadar, Splunk Enterprise Security, LogRhythm SIEM, Wazuh and ThousandEyes, whereas Nagios XI is most compared with Zabbix, Nagios Core, PRTG Network Monitor, Icinga and Wireshark. See our Fortinet FortiSIEM vs. Nagios XI report.
We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.