Fortinet FortiAuthenticator Reviews

Our company is based in Latin America and we work mainly in areas relating to telecommunications in the banking, retail and public sectors. We are partners with Fortinet. 

The solution is simple to deploy, simple to use, and user-friendly. 

I'd like to see a simplified two-factor authentication process and some additional security around the function of geolocation. If you can't authenticate to protect transactions, and the security is weak, it's a problem. 

If you have the correct architecture, the solution is stable. If there are a large number of users, there are likely to be some stability problems. 

The solution is scalable. 

We're happy with the customer support. 

Positive

The initial setup was straightforward. The solution functions 24/7 so the admin, operation and maintenance need to be in good shape round the clock so we generally have four engineers involved in maintenance. 

I think this is a good solution although there are some things that need to be improved so I rate this product eight out of 10. 

Our primary use case for Fortinet FortiAuthenticator is, first of all, as a two-factor VPN for enhanced access security. We use this product to provide secure access for all of our employees. 

Our other use cases have to do with using FortiAuthenticator for other security projects which includes things like access to some important web applications. 

One of the things I find most valuable in FortiAuthenticator is the detail in the logs. The log features are very good and the detail makes it easier to control what happens in the environment. 

Another valuable feature is that it is an on-premise solution. Because of some regulations, we can not use this particular type of product for security on cloud. We chose FortiAuthenticator because it is an on-premise solution. 

There is nothing that really stands out as something that needs desperately to be added or improved. We are using Fortinet all the time, we know their GUIs, so we can manage well with FortiAuthenticator also. 

The main problem now is not exactly with the product itself. We are using FortiAnalyzers. But when we use that product with FortiAuthenicators, we can not use SQL language to access data from the FortiAnalyzers database. When we use it with FortiGate, we can query the FortiAnalyzers database, but it is not possible to do it directly with the FortiAuthenicators. This integration should be better. 

We have not really faced any problems with stability up until this point. The product has not given us any reason to question the stability. 

We have not needed to use the Fortinet technical support up until now. I do not know about it firsthand. The product is very easy-to-use and someone can easily manage working with it, so we do not need any support. We do have the support contract, but we have not used it at all. 

The initial setup was not complex at all. It is actually very easy. 

I think FortiAuthenticator is more expensive than other products like Cisco Duo. It could be more competitively priced. 

We want to use high-availability in our products, so we need to get a higher grade and more expensive license for that purpose. 

On a scale from one to ten where one is the worst and ten is the best, I would rate Authenticator as about a seven-point-five. If it has to be seven or eight, I would choose eight. 

I have not used many products in that category with our site, but we can do what we want and need to do with that product. 

My customers use this solution for accessing banking applications online. 

I'm a reseller. I sell to my customers, and they use whatever I have. I provide Fortinet for my customers.

We work with the latest version of this solution. It is deployed on the Fortinet cloud. We don't do it independently.

There are 3,000 customers using this solution in my company on a daily basis.

FortiAuthenticator has made our operations secure.

The most valuable feature is the OTP on the mobile phone.

The speed of deployment on the cloud could be improved. It took a few days when it should have been just two days.

In the next release, I would like to see compatibility with non-Android and non-Apple platforms.

I have been working with Fortinet FortiAuthenticator for eight years.

It's very stable.

Scalability is fine. You can grow it easily.

Technical support is very quick.

It wasn't difficult to set up. It took two days to deploy this solution and a week to roll out.

The pricing is fair.

I would rate this solution 8 out of 10. 

I would absolutely recommend this solution to others.

The solution is really important to ensure double authentication for the user. For example, if you have an internal messenger and you want to ensure the access externally for users, you can implement the two-factor authentication. Also, for the VPN, you can implement two-factor authentication to avoid any kind of hacks.

If you want some other FortiAuthenticator from one site to another site, you should have requirements, but really if you have authentication and directory or another solution, you should change the password of the authenticator between the solution and the directory and other things. So the transfer of data and other information should be simpler.

In the future, I think h02.exe is very important to authenticate users internally. To economically move the person from vnom to vnom. Also, the ESO to ensure the authentication of users should be a bit more automated.

In my opinion and my experience, I didn't have any problem with the solution, just the requirements for other solutions that we should integrate with it. I think the solution is easily implemented, and, in my opinion, there is no problem with this solution. Just a bit of correction is needed, and that's it.

My impression is that the solution is good and I like it and I would work with it for another project and increase my skill on the solution.

I have worked with them, so I like the technical support of Fortinet. I would give them a good mark.

The initial setup is so easy and there is no problem in the implementation. We can implement it easily in a different kind of infrastructure.

I started working on FortiAuthenticator from last year. I have had a chance to deploy many, many projects on FortiAuthenticator. I deploy 10 next-gen projects on FortiAuthenticator. I deploy many defensive scenarios. Also, I have good experience with large products.

You should make sure to implement the requirements via experts like me, so you can implement the product carefully. In that way, you can use it clearly in a simplified manner.

For FortiAuthentication, it's a good price in comparison to any other competitor. Other products are so expensive, and the features are the same. There might be a bit of difference between the two products, but if you want just double authentication and some other features, I think I recommend the FortiAuthenticator, and it is low cost and has other defenses.

In my opinion, I recommend the solution. You can also use it for other things like h02.exe for authentication of users. Also for ESO. There are five things you can use it for, so I recommend the product. The low cost is very important for any customer.

I would rate this solution eight out of 10.

The valuable features are the granularity of the security settings and the relative ease of adding users. It also makes it really nice and easy to remove access from users that have left us or who are doing things they shouldn’t be doing.

It made things much easier for dealing with users BYOD for our secured wireless networks. We also use this in conjunction with an MDM solution. It makes a nice package that is easy for our end-users and is very secure.

The interface is a bit misleading in areas. Finding some settings can be a bit confusing and difficult. I would also like to see a few more real world examples given in the setup section.

We have used this solution for one and a half years.

We did not have any stability issues. This runs on our VMware environment and we have never had an issue with stability.

As this is a virtual device, we had no scalability issues. If we need more users, we just add more licenses. This makes it nice as there is no physical appliance to outgrow.

Configuration of the virtual device was very straightforward.

The configuration of the settings in the authenticator was a bit more confusing. We did have to contact support a few times to work through some configuration issues. They also helped us set up some configurations for the active directory and our local certificate servers.

The price was very reasonable given what it can do.  Licensing was also very reasonable.

Just make sure you do an accurate count of what you will need for licenses. If you run out of licenses, no additional users will be able to authenticate through this device.

Planning is the key to a successful implementation. Know what you want to accomplish out of the gate before you get started. Make sure you test before rolling out to end users. Due to really tight timelines, we missed a couple of key settings and configurations.

We implement FortiAuthenticator in situations where there are multiple Active Directory domains. Other use cases include:

• When we need to use FortiClient to keep track of users as they move around different locations where normal FSSO would have issues
• When we need to use one FortiToken for multiple Fortigates
• When we want to use it as a domain controller.

The FortiAuthenticator can do many things.

It keeps track of users and their IPs no matter where they are in the network. When users roam, we don't have to worry about not mapping them to an IP.

Valuable features include the robust SSO features, when you have more complicated authentication within an organization. We can mix AD, Radius, Portal, SSO Portals (Google, etc.), and build our own environment. It is very flexible.

The GUI is on the older side but I'm sure that it will be upgraded soon. It works, but it looks a little dated.

FortiAuthenticator can be useful for network security, resource security, and server security. It is a cloud-based solution.

The most valuable features are the performance and ease of use.

The only way the solution could be improved is if it were cheaper.

I have been using Fortinet Fortiauthenticator for five years. We have 200 users in our organization who use FortiAuthenticator.

The solution is stable.

Fortinet FortiAuthenticator is scalable.

Technical and customer support is okay.

We haven't used a different solution.

Installation was very straightforward and took three days.

We used a team of three people for deployment and maintenance.

The cost of the license could be less expensive. The license is paid on a yearly basis.

I would rate this solution an 8 out of 10. I would recommend Fortinet FortiAuthenticator for those who want to start using it.

Fortinet FortiAuthenticator is being used in our clients' companies. These companies are medium to enterprise level.

The feature that I have found most valuable is the fact that you can utilize your tokens across the whole Fortinet fabric once you have the FortiAuthenticator. You can use FortiAuthenticator to provide two-factor authentication among all your network devices as long as they support the RADIUS protocol. Even for servers, especially Windows OS-based servers.

If you have any products that support RADIUS, you will be able to use the two-factor authentication. You can integrate them with the FortiAuthenticator and you can make use of the 2FA token among all our network devices, not just the Fortinet ones.

So far there hasn't been any major feature that we wished for and didn't find, but I would say in regards to bugs, sometimes we face unexpected issues that delay the implementation a little. However, I believe Fortinet will sort this out soon. Hopefully the solution will be more stable overall.

In terms of what additional features we would like to see in the next release, we would to see support for more of the common operating systems. They already support Windows OS, with the use of an agent installed on the windows machine.

However, we would like to see support for Linux-based operating systems for example. This is a shortcoming that I have faced a few times already.
Also a nice addition would be agents for End-user Machines especially Windows OS & MAC OS. 

We've done quite few deployments of Fortinet FortiAuthenticator over the last one and a half years.

Some bugs that we find we can work around, but usually we open the ticket with Fortinet anyway. This is because sometimes we suspect that we do not have the proper understanding or maybe there is something that we need to get an insight on from the technical support because they have their big databases and can provide us with additional valuable information about our cases. Sometimes we may find a workaround, but if we don't know what happened and why, we open a case anyway to get the full details.

Fortinet support is quite good. Their engineers are experienced and well-trained. Generally speaking, we feel that the technical support is capable and know what they're doing. You don't feel that you're speaking to someone who doesn't understand what the product is, which we face sometimes with other vendors. I would say, generally speaking, we are happy with it.

The initial setup is a valuable point on Fortinet products. Most of the time, putting the theory into practice on the devices is quite friendly and straightforward. As long as you can read through the menus, you can find your way around the solution and make it work. A 10 minute surf through the tabs will give you an idea of what you can do and how to do it. Documentations and guides are also available when needed.

This is a high value point on Fortinet - the way everything is laid out in the web UI is user-friendly and quite straightforward. 

Generally speaking, Fortinet prices are competitive enough. It depends on the markets, but in our market, the price sensitiveness is high, especially now with the current economic situation after the COVID-19. This became something to take into consideration even more. Price is always important, but after such a situation, it's even more so. Customers became even more sensitive to the prices. So, price is another value point for Fortinet.

If two-factor authentication is needed also for the end-devices, for example a endpoints or servers, I think FortiAuthenticator is not yet the most mature solution. However, if it is great for network devices, then this product is competitive enough price-wise and easy to use. It just works.

On a scale from 1 to 10, I would say Fortinet FortiAuthenticator is an 8.