Enterprise Level Policy Manager at a government with 10,001+ employees
Nov 9, 2022
Vulnerability remediation is valuable. We can narrow down a system and its properties. We can go granular on the properties of each endpoint, such as which operating system you're using.
Senior Tech Consultant at Ministry of Finance, UAE
Mar 29, 2024
We use the Forescout Platform for device visibility and control in our network. It's very helpful for tracking malicious or unusual activity. We use it to track which ports are open, which machines are running specific services, and to identify vulnerabilities. For example, there was a vulnerability related to SMB, and we could use the product to determine which machines inside our organization were allowing SMB traffic.
Senior Security Engineer at a healthcare company with 10,001+ employees
May 19, 2020
Being able to sort on device types or devices with open ports is helpful when narrowing down assets of possible misconfigured devices that may be vulnerable on the network. We can take action on those devices based off of corporate policy.
Being able to actively identify the client without a certificate allows you to control every device on your network regardless of the make, model, and software running. This allows for end-to-end security.
Senior Network Engineer at a government with 5,001-10,000 employees
Sep 24, 2020
You can quickly filter your view of devices and zero in on the ones you want using a variety of tools, such as what subnet it is on or what it has been classified as.
Enterprise Level Policy Manager at a government with 10,001+ employees
Nov 9, 2022
Logging would be one area for improvement. When we're troubleshooting, there are not a lot of clear things on Google that we can look up for ourselves. When we have an issue with it, we have to call the company to get the vendors involved. The logging of Forescout is horrible compared to other things that we've used.
Senior Tech Consultant at Ministry of Finance, UAE
Mar 29, 2024
The product needs to improve its support. I know a case that dragged on for about one and a half years. They eventually suggested professional services and closed the ticket. We followed their advice, engaging the account manager and professional service team, only to discover that the issue was a bug. After reopening the case, it's been about six months, and the problem still hasn't been resolved.
Senior Security Engineer at a healthcare company with 10,001+ employees
May 19, 2020
When adding what is in scope to a policy, it would be nice if you could select multiple policies instead of one policy at a time to add what is in the scope for network segmentation. I have found that during the install and configuration of the policies that if you want to modify multiple policies or enable multiple policies that you need to define what is in the scope (IP range or segments) one rule at a time. This caused some slow downs when implementing policies.
Ingeniero Senior en seguridad y telecomunicaciones at a non-tech company with 1,001-5,000 employees
Feb 25, 2021
The licensing costs are quite high. With the amount of hardware we have, we need too many licenses to make the product effective and it's ultimately just too costly.
They need to handle their Tier 1 cases differently. The biggest negative regarding Forescout is their support. Not having the ability to get instantly transferred to a support engineer for Tier 1 cases is pretty ridiculous.
Service Line Manager (Service Operations Expert) - Network Access Control at a pharma/biotech company with 10,001+ employees
Aug 11, 2022
As a product, there is nothing to complain about. However, they should improve their overall support.
You need that level of knowledge, that level of information is clearly not available.
First and foremost, that information is not accessible.
The second point to mention is that once you purchase the later support and services. That is, they will continue to charge you for every service.
Products & Solutions Manager Cyber Security | Forensics at a tech services company with 201-500 employees
Sep 10, 2021
As a user, if I am using a laptop that is Wi-Fi connected, Forescout identifies my port connectivity as one user license, and if I take that same laptop with the same username to a wired network, which is also the same network that is used for the Wi-Fi connection, Forescout detects it as a separate license.