Please share with the community what you think needs improvement with Fortinet FortiSandbox.
What are its weaknesses? What would you like to see changed in a future version?
The integration is limited. The solution needs to offer better integration with multiple vendors.
I'm not sure whether anything needs improvement because I feel we need to have more experience with it. Perhaps if there were issues where customers complained, that's when I would be able to comment on what could be improved. So far, I haven't come across any specific features that need improving. I'm content with the features of the product. If they plan to provide a feature that would make it easier for the customer to configure themselves, that would be appropriate. And possibly a user interface. As a service provider, the functionality is quite satisfactory.
Something that needs to improve, is the end-point protection.
It would be awesome if it can be integrated with other solutions. I would like to add one more feature because there are some tricks to deploy integration for all sorts in a product. I had that problem because when I had FortiSandbox, FortiLink, FortiClient, FortiManager, FortiLicense, there was one license for the integration, and the other license was called IOP or FortiAnalyzer. I would like to have one bundle or one license for each device. There should be one orchestrator for the integration because until now there have been two devices, which are the orchestrators for the integration. So most people are confused about how to use the right integration of the right Fortinet product.
At least once a week we have a false alarm. This needs to be adjusted so that we get fewer of these occurrences.
Sometimes, email remains in the queue, which is a problem that we have contacted support about. This is something that needs to be improved. The response time from technical support should be improved.
The licensing can be very confusing. It needs to be simplified. When choosing FortiSandbox, there are three different types of Licenses, but it doesn’t specify that it is for FortiSandbox, so you have a box for Sandboxing, then a separate box for hardware, and a separate one for the Cloud.
FortiSandbox could be improved. Fortinet took some time to include this feature and new technologies. They have to develop it more, because of the codes, the variables in the number of virtual environments and the number of virtual rules. They only provide eight or sometimes a maximum of fourteen virtual environments and the competitors are offering two hundred environments, so the number of environments offered it too small and needs to increase. Currently, this is one of the weakest capabilities with FortiSandbox. The integration has no enforcements, you cannot apply any action, you have to integrate it with Fortinet. For example, if a customer wants to have FortiSandbox, he has to purchase the entire Fortinet profile. This is not an advantage for Fortinet, compared to others that can be integrated easily with any technology and with any vendor. Fortinet will only integrate with itself. They are not leading in endpoints for FortiSandbox. The capabilities and features of this solution are not good. They have to enhance and develop the product to compete. In the next release, I would like to see machine learning and anti-exploitation included.
We would like to see the solution open to third parties.