Fortinet FortiClient Room for Improvement

Senior Network & Security Solution Architect Consultant at Corenet Inc

The improvement required for Fortinet is that they must increase RAM in low-end Firewalls. because low-end Firewalls come with very low RAM, due to low RAM users faced performance issues when increase user traffic, that can cause performance issues. even we know other vendors are using a minimum of 04 GB RAM. But Fortinet for their low-end entry-level box is using only one/two GB RAM. That is very low and can be a performance issue.

If we compare the performance based on their datasheet, it does not really meet the full requirements. For example, if we are using the FG-60F Network Security Firewall 10xGE, the throughput is 10 gigs. But the memory is two GB. Two GB of memory is too low to handle the throughput. So they should increase the memory in the box. Fortinet can gain end customer confidence.

View full review »
Senior Manager at PARTEX STAR GROUP

This product is very good. Graphically, it is okay, but this may be one area where it could be better. It should be more graphically inviting. It is okay as it is, but it could be improved.  

If I compare FortiClient VPN and OpenVPN, FortiClient VPN takes too much time while installing on someone's computer or laptop. I do not know why that is. The installation takes too much time compared to OpenVPN. OpenVPN is a very light software. It is installed in a couple of seconds. It does not make sense that FortiClient takes so long to install. I just feel it is a problem that could be addressed.  

View full review »
IT Engineer at BAZ

I would like to see an improvement in the web filter, because I think it can be more user-friendly. For instance, if I want to authorize a user to access a certain website, it should be easy for that user to edit those websites on the exempted list. But sometimes I find that my users can't do that when I am not at the office. Due to the fact that some of our users operate remotely, it sometimes happen that they can't access a specific website. Then I have to go through all the websites, or dive into the users machine just so that I can change the configuration. I therefore think it should be a little bit easier for a user to add a certain website to the exempted list. 

Something else that should be worked on, is the compatibility issues between versions 6.2 and 6.0, because it is not easy to upgrade your firewall to the latest version with admin. If you want to upgrade, you need a hardware change. 

View full review »
Learn what your peers think about Fortinet FortiClient. Get advice and tips from experienced pros sharing their opinions. Updated: July 2021.
522,946 professionals have used our research since 2012.
Solutions Architect at a comms service provider with 51-200 employees

The deployment status is not good in Mac devices and sometimes in Windows-based devices using GPO, like Active Directory, that are not on the local network. Deployment can be a painful task in these cases. 

You need to get a management console in the cloud because the EMS server must be deployed on-premises in order to connect to FortiGate. This is because the on-cloud server is not deployed well. It's not good enough yet for the customer to use. So, the deployment cases and the management console of the EMS server must be improved.

Development of a mail protection feature would be nice because there's not one present right now. Something that looks at the email that's getting into the PC or the possibility to use a monitor for the EMS server would be great.

View full review »
Lead Architect at a computer software company with 51-200 employees

SAML authentication was newly introduced (Post 6.2) but the free customizable version (Forticlient Configuration tool) from FNDN is still at 6.0.10. I would like to see in an upcoming release the free version of Forticlient Configuration tool supporting authentication and customizable for the customers. This is available in the FortiClient developing networks, but it is only available without SAML authentication. 

Also would like to see more descriptive error messages when authentication fails in Forticlient specially when using forticlient VPN connection from Windows Login with Fortitoken as a 2FA

View full review »
Senior Information Security Consultant at Future Telecom

The only thing that is lacking in this product is the support. Their support can be improved.

View full review »
IT Manager/systems engineer at a tech services company with 51-200 employees

For buying or deploying it with additional features, apart from VPN client, web security, or antivirus, I would like to see the USB key blocking function included in this solution for endpoint security. For endpoint security, you need antivirus and all of the features included in antivirus software these days, web security, and USB key locking feature. If it is implemented in a way that in one package, you have all the primary features needed for security these days, it would be nice. All of those features will probably be additionally charged as it is a web security feature on FortiClient.

View full review »
Director at a consultancy with 11-50 employees

I'm now looking for some sort of option that can maybe be centrally located. We want the IP in our office to centralize the settings and so on. The one that we use, hasn't had that kind of capability to push the settings.

We'd like to be able to properly encrypt the data more effectively. We want them to offer encryption of the hard drive.

The initial setup can sometimes be complex.

View full review »
IT Director at Guangdong Technion Institute of Technology

I think that FortiClient can enhance the multifactor authentication. Currently, if you want to enable dynamic tokens with FortiClient authentication, you only have one option, which is supplied by Fortinet.

You cannot integrate FortiClient VPN with Google authenticator or Microsoft authenticator, it's impossible. I think that they can improve this module.

In the next release of this solution, if they could improve the MFA, it would be a perfect solution.

View full review »
Director of Information Technology at a real estate/law firm with 201-500 employees

Its stability can be improved. It is not as reliable as I would like it to be. There are times when things don't work quite right.

Our biggest pain point is not related to Fortinet FortiClient and the whole scheme of things. It is related to one of the additional services called FortiGuard. They are the arm that does all of the updates to definitions, keeps all the signatures updated, and responds to new threats and whatnot. What we have found is that they react quickly, but sometimes their solutions aren't compatible with all of the components of the Fortinet security suite, specifically around FortiSandbox.

View full review »
Consultant at a wholesaler/distributor with 10,001+ employees

I feel that this product is more to bolster their marketing, rather than its use for actual synchronization.

This solution is not able to deliver interprocess visibility when it comes to the endpoint, and this is something that needs to be done. Other solutions, such as Carbon Black, are able to do this.

The memory check needs to be improved, giving better visibility into the run-time memory.

The anti-exploitation engine needs enhancement. When it comes to Windows processes and protocols, they need to be included in a more effective way. As it is now, they simply have a checkmark beside it. They have visibility of the protocol, for Windows and the operating system communication, but they are not offering the same level as other solutions, such as Sophos, when it comes to the endpoint.

The level of data protection provided by this system is inconsistent.

View full review »
Sr. Manager at Emirates Technology Solutions

In terms of improvements, their SSL VPN tunnel can be a lot better. I've seen other products that have got much better VPN features than Fortinet.

Some of my colleagues get this error called "License not available." When they get this error, they have to uninstall and reinstall it. This kind of problem is there, and sometimes, we have to open a case with Fortinet to resolve it. Their support is quick, so we are able to resolve and move forward.

In terms of new features, when it is connecting, it should check the endpoint and say whether the end client is actually safe enough or whether there is a vulnerability. It should give a pop-up on the client itself. Because I'm on the admin side, I can also see this information in the log. However, if a non-IT user, such as a user from finance, is working on this and there is some problem, he or she would not know about this and would call IT admin to say that this is not working. If the users get a message explaining why and what is happening, it is easy for them to understand.

View full review »
ICT Officer at a non-profit with 5,001-10,000 employees

Initially, the support was very poor. It is getting better, but they should continue to improve this.

Currently, we are having issues where the antivirus is blocking an item, but it is almost impossible to disable the antivirus. If the user wants to lift these priveledges they can't. Some options are not changeable. You cannot switch off a blockage even temporarily. I understand why it is like that, but I would like to give less control to these important processes because right now it is very complicated to turn off the protection even for testing purposes. 

View full review »
Head Of Consulting at a tech services company with 51-200 employees

I would like to see endpoint detection and response included.

View full review »
Consultant at a tech services company with 10,001+ employees

We have been facing some issues when we use the web browser to log into the VPN gateway and we use the SSL VPN through the web page and have found that the browser is unstable.

It is difficult to get logs for the client on the firewall.

Technical support can be improved. While they respond quickly they don't resolve the issues quickly.

I have yet to find the benefits of the latest upgraded version.

View full review »
Senior Director, Technical Support and Product Development at Exclusive Networks

There isn't much to improve in terms of features and comparison with other vendors. It just needs to stay more up to date in catching the malware. 

The user interface may be improved, which would be a minor enhancement. Unlike central management, in endpoint security, the end users don't need to keep looking at the endpoint user interface. The technology is the most important thing in endpoint security. 

View full review »
Network Engineer at a tech services company with 11-50 employees

My customers say they need a consultation to fully integrate services. This needs improvement. I would like to see better integration. 

The price could also use improvement. 

In the next release, some of our clients said that while they can select different customers, they get confused and they would like to also see the logo of the company. The name is written but they want to see the logo as well. 

View full review »
Network Security Engineer at a consumer goods company with 201-500 employees

I am troubleshooting some errors that I have had with the VPN and they are difficult to resolve.

In the next release, I would like to see an additional layer of security added.

View full review »
Network Security Engineer at a consumer goods company with 201-500 employees

The current version of this solution does not show the malicious websites that have been visited. They should add this to an upcoming release.

There should be an automatic bootup scan option easily accessible.

View full review »
Systeem / Netwerkbeheerder at a financial services firm with 51-200 employees

The pricing could use improvement. It should be cheaper. 

The reporting can also always be better. 

View full review »
Workplace Support Services at a comms service provider with 10,001+ employees

When we change our endpoint, we have to connect again, which means having to enter our credentials and permissions. Also, we are facing some connectivity issues after changing our mode of connection to a public base. It's slow in reconnecting.

I would like to see changes to the speed in the end-user connectivity improved in the next release of FortiClient.

View full review »
Presales Engineer at soulco

The pricing of the solution should be less expensive. 

 It would be nice if you could connect to three or four sites at a time.

View full review »
Network Security Manager at Onix-it solutions

FortiClient is not communicating with the new version of the firewall.

View full review »
Learn what your peers think about Fortinet FortiClient. Get advice and tips from experienced pros sharing their opinions. Updated: July 2021.
522,946 professionals have used our research since 2012.