We use the product for multi-factor authentication, single sign-on, and FIDO integration. We utilized it while logging into Windows and remote SSL VPN with MFA.

The product's on-premise version doesn't have recurring costs.

Fortinet FortiAuthenticator's initial setup process could be easier.

We have been using Fortinet FortiAuthenticator for two years.

It is a stable platform.

It is a scalable platform.

Fortinet provides excellent support services. A level-one engineer will attend your first call if you have a basic support contract. However, your call will be transferred to a specialist if you have an advanced-level support contract.

We used Duo before. It is a cloud solution and has recurring costs. Thus, we switched to Fortinet FortiAuthenticator as it is an on-premise solution and comparatively inexpensive without recurring costs. They only charge a nominal fee for support.

The initial setup is complex. It would be helpful if customers get assistance from professional services. They can customize it depending on the architecture visibility. It is easy to design if they hire a knowledgeable architect. It takes less than a week to complete.

Our company provides professional software development services to different clients.

The product generates a lower ROI than other vendors.

I rate Fortinet FortiAuthenticator a nine out of ten. I advise others to have clarity on the visibility and scope of the design and then start with the deployment.

We use Fortinet FortiAuthenticator to maintain security, and access, and monitor authentication and authorization processes. It enables the proper functioning of the CA server. We can use various authentication methods, including EFTOS parameters like PKI (Public Key Infrastructure) for the CA server.

The product’s most valuable feature is integration with FortiGate, FortiToken, FortiTalk, and multi-factor authentication. It is inexpensive compared to Cisco and Clear Pass.

Fortinet FortiAuthenticator provides only authentication. It should also enable authorization services. There could be a central management point for both the services similar to Cisco and Clear Pass.

We have been using Fortinet FortiAuthenticator for around a year.

It is a stable product. I rate the stability a ten out of ten.

It is a scalable product. It is suitable for medium and enterprise businesses. Its scalability is a seven or eight out of ten.

Fortinet provides good support services.

Compared to Fortinet FortiAuthenticator, Cisco is a complicated tool to use. It is difficult to configure as it has many features. It is scalable but needs to be a more stable product.

The initial setup is very easy. It takes an hour to complete.

The product is inexpensive compared to Cisco. I rate its pricing a three to five out of ten.

I recommend Fortinet FortiAuthenticator and rate it an eight out of ten.

In my recent job, I worked in tandem with Fortinet to enable 802.1X authentication for the Wi-Fi environment.

The web feature is quite versatile. It serves as the sole server authenticator and is valuable not only with FortiGate products but also within the entire Forti system, making it highly useful for me. However, from my experience, I find the visual data to be less practical. While some features might be more respected than others, it's valuable that, for instance, when a customer has a new lead cluster, I can authenticate or leverage alternative solutions to achieve the desired outcome.

The only issue I encounter is that when not using FortiAuthenticator for an extended period, it's typical to encounter some obstacles in the configuration process that you need to address. It's not a consistent problem, and I can't recall all the specifics. This issue is something I face with the entire product. While it's normal for products to require ongoing attention, this can be a challenge when checking the system.

I have experience with Fortinet FortiAuthenticator.

I recollect instances when customers didn't approach me about their issues, instead opting to submit tickets. From a personal perspective, customer mobility played a role, and sometimes I wasn't fully aware of the problem until later. However, I can't recall many details about these cases.

It's scalable. If the need arises, you can easily set up a cluster with two or more units. Additionally, if you require more licenses or features, you can expand.

It works well for me. I can review the initial check, explain it thoroughly, outline the subsequent steps, and attempt to address the problem. This often involves quickly escalating to technical levels two or three. In situations where I open a general ticket, it's standard to begin with a level one tech who collects information to understand and resolve the issue. The more detailed and accurate the data is, the easier it becomes to find a resolution.

It is deployed on-premises. One or two days for initial deployment is insufficient. It typically takes a few more days to set up the specific configurations. The standard device configuration is exceptionally fast.

Based on my experience it's been very good. I don't have much knowledge, for instance, about how it compares to Gartner's system and its current position in the market, or whether there are other systems that might have a better position. I've noticed that Fortinet lacks certain features that other solutions have implemented. This leads me to explore and understand other solutions, looking for differences. I've observed that some solutions offer features that Fortinet may excel in, while others may have strengths in different areas. I would rate it an eight out of ten overall.

My environment is multi-cloud. I have a production workload in Nigeria. I have some data centers in Continental Europe and in the East US in multiple regions. We operate both on-premises and on two different public clouds: AWS and Azure. At the time, because of how Fortinet worked, we connected to our customers via remote access VPN.

Because of the nature of Amazon Infiniti, it had a very big impact in Africa and on how we implemented our SA as the most effective authentication service for our VPN.

Originally, when people tried to connect, they had to put in their original credentials and send a request back. The issue here started before software tools were being used, and hardware tools had to be used for privacy. We had to have five firewalls and five different token devices. It was very clumsy and not efficient.

We decided to go with FortiAuthenticator because it provides us with a single point of authentication, instead of having an authenticator on each one of the firewalls. Only five to twelve hours are connected on the back and then Citrix will send us an email or a text message. We can then easily and seamlessly use the solution.

The first valuable feature is being able to see everything on one platform. This includes logs and authentication failure.

The second valuable feature is that the delivery and delivery methodology is toll-free. This includes email configuration, using the mobile app, and text message delivery. There is no need to buy any extra hardware, it is free.

The third valuable feature is that the chip that is applied is free.

We save a lot of money on consolidating tool teams. We have multiple different tool teams. This solution provides us with a single point of authentication for all of the files in all of the teams' environments.

The user interface can be improved.

The technical support team is bad.

The cloud deployment felt limited, but there was valuable information on the Internet. A lot of testing needs to be done, and the deployment is easier for those who understand how to do it on the cloud. We needed support here and the support team could not figure out the issue. Eventually, one of the support team members helped, but there was still an information gap.

It is usually cheap. Without a license, you can use some basic features. You can buy a 20-year license and implement the solution once.

I rate the overall solution a nine out of ten, due to support issues.

We are using FortiAuthenticator for authentication to connect to our network, either through some software or VPN or SSL or CyberArk, anything.

Samuel is good. We are using Samuel. Also, the good thing is that it's easy to use, and the logs are very precise.

There is a room for improvement. The log is a bit difficult to access, and searching the log codes is also a bit difficult. So it would be much better if, when we open a log, it could provide detailed information about errors, reasons for failure, and such.

We have been using this solution for approximately one and a half years.

It is very stable. We have never had any issues with this solution.

I would rate the scalability an eight out of ten. Some improvements, but it's on our end as well because we are still using the older variant.

We have around five to seven end users using this solution.

The customer service and support are awesome for FortiAuthenticator.

I've been using Fortinet for the last eight or nine years. So, for other professional solutions from Fortinet, the support is not so good. You have to open a case as usual, and some technical contact will get in touch with you if they're available. If not, we have to call a toll-free number manually, and they will connect us to an available agent who will check our case and then escalate it. For normal issues with no business impact, it's okay to wait for two or three hours, no problem. But in critical situations, it's challenging to reach them.

The initial setup is simple. It's not that difficult. You have to know the functionality of FortiProtect, the requirements, and it depends on your network. It's not that difficult to implement.

We have VMs and devices. But mostly, we are moving to VMs.

We design and then, Fortinet team will implement.

I would rate the pricing a four out of ten, where one is cheap, and ten is expensive. It is not that costly. It is cheap, easy to manage, easy to install, and easy to configure.

We evaluated Palo Alto. It's easy to use, offers a lot of features in one box, and it's cost-effective. And the support is very good.

Overall, I would rate the solution an eight out of ten.

We use the solution for different clients and how they authenticate for VPN and Wi-Fi. We also use it for the captive portal and single sign-on. We use it for quite a bit for authentication.

The product has become a central hub for how dozens of our clients authenticate to VPN and Wi-Fi. It has given us a very easy way to manage dozens of customers and how they authenticate and troubleshoot. It gives us a one-stop shop for everything. The solution is very easy to manage. When we have multiple customers authenticating to multiple domain controllers, it centralizes all that from an MSP perspective.

The ease of management of authentication for multiple clients is a valuable feature.

The product must provide full support for third-party FIDO security keys. It must also provide full support for YubiKeys authentication keys.

I have been using the solution for about four years.

The tool is extremely stable. I rate the stability a ten out of ten.

We can scale the solution pretty well. I rate the scalability a ten out of ten.

We rarely have to call the support team for this product. When we do call, support is usually pretty good.

The solution was straightforward to deploy.

I have seen an ROI on the tool.

I rate the pricing an eight out of ten. The solution is not very expensive.

If someone’s looking for a way to easily manage the different ways that users can authenticate in their environment, I would suggest Fortinet FortiAuthenticator 100%. It's an extremely good value for all the different things that it does. Overall, I rate the product a nine out of ten.

FortiAuthenticator provides multi-factor authentication. After testing your username and password, it adds another layer of authentication where FortiAuthenticator challenges you with a number provided by the FortiToken app on your mobile phone.

I appreciate its ability to provide multi-factor authentication, but it's primarily focused on this function.

There are some minor things that could enhance the overall experience. Maybe enhancing user integration with other solution tools to implement multifactor authentication using virtual authentication.

Another area of improvement is stability and support.

We have been using this solution for two and a half years. We use the latest version, we usually update the solution for the upgraded version.

It is quite stable. I would rate the stability a nine out of ten. There are other solutions that perform certain aspects better than FortiAuthenticator. It's a strong solution, but there's room for enhancement.

There are no problems with scalability. In our company, all the employees use it to access network resources through VPN. And around 60% of our customers also use this solution.

Customer service and support are quite good. Fortinet provides quick and helpful responses, though occasionally, the answer might not directly address the issue.

We used Cisco SSO authentication system before switching to Fortinet FortiAuthenticator. It was mainly because of economic aspects.

The setup depends on the integration requirements. Integrating FortiAuthenticator with other Fortinet products is relatively straightforward.

In terms of implementation, it performs quite well.

The deployment time is variable. Due to occasional weaknesses in the API, deployment time can vary. Sometimes it's easy, and sometimes not due to these factors.
We managed the deployment ourselves. In another business unit of my company, we're integrators for this tool. We handle the sale and implementation projects, so we have the required competencies.

For example, we need to set up the network and integrate it with the desired resolution for the deployment process. Then, deploy the client zone to the users' mobile phones, enabling them to use virtual authentication configurations.

The solution is deployed both on-prem and cloud. The staff needed includes engineers, developers, and sometimes even technical support for custom API creation and customer designations.

I have seen an ROI because the solution allows you to enhance security, leading to better rates in other security aspects.

It's not expensive. As we increase the number of users, we'll also be expanding the company workforce.

It's a yearly payment, but you can also find options for monthly payments. There are no additional costs to the standard license.

I would rate the pricing a five out of ten, where one is the cheapest and ten is expensive.

The advice is simply to use it. Overall, I would rate the solution an eight out of ten.

In my company, we use Fortinet FortiAuthenticator as a AAA server. We use it to integrate with LDAP and integrate with FortiGate in multiple locations with centralized authentication. We can authenticate the users since Fortinet FortiAuthenticator allows for two-factor authentication and FortiClient.

FortiGuard supports two-factor authentication or FortiToken, but it is only for a centralized location. With Fortinet FortiAuthenticator, we can allow centralized locations and users across the globe to use it.

Documentation is an area where Fortinet is constantly trying to improve.

For improvement, Fortinet needs to ensure that they provide quick support to users. Once a ticket gets created by our company with the support team, we have to wait for SLA, which can go up to four or sometimes six hours. Fortinet sometimes needs to respond to users facing issues within an hour. Fortinet needs to improve the part of engineering SLAs.

Automation is a feature I would like to see in the solution since Fortinet has included automation features only in FortiGate. It would be better to see automation features, like backup, interfaces, or statuses, in FortiAuthenticator.

I have been using Fortinet FortiAuthenticator for five years. My company has a partnership with Fortinet.

It is a stable solution.

It is a scalable solution since the tool provides its users with the option to scale up.

With Fortinet FortiAuthenticator, I work for medium and large enterprises.

I rate the technical support an eight out of ten.

The initial setup of Fortinet FortiAuthenticator is easy.

Fortinet FortiAuthenticator's deployment takes an hour if everything is up and running.

Three to four engineers are required for the deployment of the product.

Everything in the tool, including the tool's GUI, is user-friendly.

The solution is easy to maintain, provided we know about the product. It is not a complicated tool, making learning easy for all. Some skills are required for a person to be able to maintain the solution.

With FortiGate, anyone can access or handle the tool, especially if they have handled other products. With FortiAuthenticator, opportunities to first understand the product to be able to use it.

I rate the overall product a nine out of ten.

We use Fortinet FortiAuthenticator, mostly where wireless or wired authentication needs to be integrated between multiple identity stores.

The most valuable feature of the solution is RADIUS service and the social network integration feature.

The GUI has some shortcomings and can be made better. The GUI is not great.

For the next release, the thing that will be most useful is to integrate with other MFA providers.

I have been using Fortinet FortiAuthenticator for four years. My company has a partnership with Fortinet. We are also resellers.

Stability-wise, I rate the solution a nine out of ten. I have only ever known one stability problem.

Scalability-wise, I rate the solution an eight out of ten.

I think that commercially it is not valid for a very small number of users. It doesn't scale down all the way. I think that although it can be scaled up to thousands of users, it wouldn't be suitable for, like, a mobile network scale if you have got 50,000 or 1,00,000 users.

At the entry point, we have more than 100 users.

I have directly contacted the solution's support. They are very helpful. They do require a lot of supporting information, but they are very effective for what they do. I rate the technical support a nine out of ten.

Regarding setup, I would say that it is straightforward but not simple. It's not a job for the novice, but it is straightforward for an experienced engineer. Also, my clients normally ask for help.

The solution gets deployed on physical, virtual, and SaaS.

On a scale of one to ten, where one is a high price and ten is a low price, I rate the pricing a seven.

Price-wise, it is competitive, but they still charge.

For comparing or evaluating Fortinet FortiAuthenticator, the competitors I would normally expect to see would be RSA Security with their SecurID product. Also possibly, I would say that you would compare it against Duo or Okta.

Fortinet FortiAuthenticator is better since it is very much use-case dependent. I think a Fortinet-heavy environment where the customer already has a lot of investment into Fortinet makes it easier since it integrates more closely with their network equipment, like their firewalls. Also, it does not always require an on-premise component to provide services like RADIUS.

People who are looking to implement the product should pay attention to scaling and plan deployment thoroughly before starting, as for many things, once the decision is made, some things are difficult to change.

I rate the overall solution an eight out of ten.

The solution allows connectivity when switching between LAN and Wi-Fi primarily, and it also uses it for free tokens. So we can share tokens across multiple firewalls.

RADIUS server and integration, apart from the fact that it is a type of tool that can become a certificate server, are the valuable features for which I use it.

I'd like to see the interface become more like other FortiGate products. It seems a little bit of an orphaned one. The user interface and clustering are areas with shortcomings that need improvement.

Scalability has room for improvement since it's not really a cluster. It'd be nice with cluster data. There are things where you have to go to each FortiGate to change. So, there needs to be a cluster.

I have been using Fortinet FortiAuthenticator for five years.

The current version is stable. So, Fortinet FortiAuthenticator 6.3.3 is running.

Scalability-wise, it is a fine solution. Scalability-wise, I rate the solution a nine out of ten.

Around 20 customers are using the solution.

Regarding the support team, I would say that we have faced occasional setup issues for which the support was appropriate.

The initial setup is complicated. However, considering the complicated tasks it does, it is fine.

In general, you just spend about three days designing and implementing the solution.

The deployment is done in the customer's environment and as per what they require. So, configure the LDAP integration and SAML integration with the existing sources. Then I started to create the SAML services and RADIUS services for firewalls. I then copy to add the tokens before authenticating the users. Then, they can pull it down from the OTAP service.

The customers need to pay for licenses, and some pay on a yearly basis while others pay on a three-yearly or five-yearly basis. Also, it is not an expensive solution.

I would definitely recommend the solution to those planning to use it. However, I would suggest those planning to use it figure out what they want because you also have a FortiGate product, Fortinet product, and FortiAuthenticator, which can be a bit confusing. There are other products that FortiGate sells. So you have to figure out which solution you want.

I rate the overall solution a nine out of ten.