Sold by
Fortinet FortiCNAPP
FortiCNAPP offers unmatched visibility and context to simplify and strengthen security, empowering teams to make the biggest impact with minimal effort and time.
Reviews (393)
Kendall N G
Zero trust automation has protected every device and now secures guest and employee access
Reviewed on Jun 22, 2026
Review provided by PeerSpot
What is our primary use case?
FortiCNAPP provides network access control, ensuring that every device connecting to the network is defined, profiled, and granted the right level of access based on security policies. It is essential for visibility, control, and automated response in a Zero Trust environment in my company.
During a large client visit, FortiCNAPP automatically placed all guest devices into an isolated VLAN. It gave visitors smooth internet access while protecting our internal systems. The automation saved us hours of manual configuration and eliminated the risk of accidental exposure.
When an employee connected a personal laptop infected with malware, FortiCNAPP instantly quarantined it. The quick isolation prevented disruption and demonstrated how valuable automated response can be in real-world situations.
What is most valuable?
FortiCNAPP's best feature is the Zero Trust enforcement because it applies least privilege access policies to every endpoint and continuously validates identity and compliance before granting access.
Before FortiCNAPP, we relied on manual checks to validate devices, which slowed onboarding and left gaps. With Zero Trust Enforcement, every device is continuously verified, so only compliant ones get access. It streamlined our workflow, reduced IT burden, and gave us confidence that our network is truly Zero Trust.
FortiCNAPP impacted my organization positively by giving full visibility of every device on the network. We went from blind spots with IoT and BYOD to having clear profiles and automated policies. That shift reduced incidents, streamlined onboarding, and strengthened trust in our security posture.
What needs improvement?
I would add micro-segmentation as a feature for FortiCNAPP. It would allow us to restrict IoT devices so they only communicate with the systems they truly need. That capability would reduce unnecessary traffic, minimize exposure, and give our team confidence to expand without adding high-end risks.
FortiCNAPP could be improved with a more intuitive dashboard and simplified policy creation.
For how long have I used the solution?
I have been using FortiCNAPP for around two years.
What do I think about the stability of the solution?
FortiCNAPP is stable, and I have no problems with it.
What do I think about the scalability of the solution?
FortiCNAPP's scalability is very good.
How are customer service and support?
Customer support is good and very responsive.
Which solution did I use previously and why did I switch?
I previously did not use a different solution.
How was the initial setup?
Since deploying FortiCNAPP, we measured a 40% reduction in unauthorized device incidents compared to the previous year. Onboarding time for new employees dropped from about 30 minutes of manual setup to under five minutes with automated policies.
What was our ROI?
We save money and time because the whole department has more time to focus on other tasks.
What's my experience with pricing, setup cost, and licensing?
My experience with pricing, setup cost, and licensing is great, but I do not need to know about these topics because I only use the application.
Which other solutions did I evaluate?
Before choosing FortiCNAPP, I did not evaluate other options.
What other advice do I have?
FortiCNAPP's AI-driven Zero Trust Enforcement and governance have strengthened our security posture. Devices are continuously validated against policies, which reduced unauthorized access attempts by nearly half. The governance ledger also simplified audits since we can show clear records of who connects.
FortiCNAPP's AI capabilities have proven accurate and reliable in our environment. Device profiling is consistent with far fewer false positives compared to older rule-based systems. The accuracy reduced wasted time chasing misclassified devices, while reliability in automated quarantine shortened incident response from hours to seconds.
FortiCNAPP is an excellent product from the Forti company for others looking into using it. I rate FortiCNAPP an eight on a scale of one to ten because I prefer more intuitivity in the dashboard and simplified policy creation.
Pranav Telang
Centralized visibility has strengthened our cloud security posture and streamlined compliance
Reviewed on Jun 18, 2026
Review from a verified AWS customer
What is our primary use case?
My main use case for FortiCNAPP is majorly for AWS, specifically for security posture management and auditing so that the user and whoever is using this can capture what is necessary.
A specific example of how I use FortiCNAPP for AWS security posture management is that we created resources manually, which sometimes led to misconfigurations in the customer requirements, and we have used FortiCNAPP to detect services that are publicly exposed and security groups with wide ranges of open IPs for ingress or egress, along with checking unencrypted databases and tightening IAM permissions.
I also have a unique use case of FortiCNAPP for one of Asia's largest growing country government projects where we identified users with excessive permissions not required by them, due to many users being onboarded in the government sector, so we used FortiCNAPP to identify all cloud identities and recommended the right permission sets for them.
How has it helped my organization?
FortiCNAPP has positively impacted my organization by providing centralized visibility and consolidating our cloud security posture management, helping us identify misconfigurations and public accessibility issues, which allowed us to enhance IAM governance and visibility on vulnerabilities.
Although I don't have specific metrics, I can say it has reduced our operational overhead significantly by providing a centralized view, highlighting critical issues, and helping us tighten configurations that have reduced operational costs and time.
What is most valuable?
The best features FortiCNAPP offers, in my opinion, include compliance and audit capabilities, IAM identity management, and security rectification in configurations, along with vulnerability management, which helped us rectify thousands of overwhelmingly security vulnerabilities. I find myself relying on all of them day-to-day, including threat detection, which is really good.
What needs improvement?
Regarding how FortiCNAPP can be improved, I would say there are a few things.
For improvements, I believe integrating FortiCNAPP with ITSM tools to reduce manual ticket creation and allowing more customization in reports could be beneficial, as well as providing knowledge-sharing articles for remediation playbooks.
For how long have I used the solution?
I have been using FortiCNAPP for almost three years.
What do I think about the stability of the solution?
FortiCNAPP is stable.
What do I think about the scalability of the solution?
FortiCNAPP's scalability is open, and we can change instances easily as needed.
How are customer service and support?
The customer support for FortiCNAPP is fine, though it can take time as we need to engage with AWS first, but I would rate it around 7 or 8 out of 10.
Which solution did I use previously and why did I switch?
Previously, we have only used it as an add-on solution.
What was our ROI?
While I don't have specific metrics for ROI, I know that we save time on operations and manpower while improving our security posture.
What's my experience with pricing, setup cost, and licensing?
Regarding pricing, setup cost, and licensing, since it's a marketplace, I find the pay-as-you-go model convenient and fair.
Which other solutions did I evaluate?
We did not evaluate other options before choosing FortiCNAPP, as it completed our use case right away.
What other advice do I have?
For others looking into FortiCNAPP, I recommend it for tightening security in public clouds as it has worked well for us compared to other options such as Palo Alto Prisma and CrowdStrike. I would rate this product 8.5 out of 10.
Which deployment model are you using for this solution?
Public Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Amazon Web Services (AWS)
José Manuel Viejo
Continuous compliance has strengthened security monitoring and supported flexible deployments
Reviewed on Jun 11, 2026
Review from a verified AWS customer
What is our primary use case?
Deploying FortiCNAPP is easy for us because our technicians know FortiGate, which is the solution, and they are familiar with how to implement it.
How has it helped my organization?
I believe continuous compliance and security monitoring in this solution meet our standards.
What is most valuable?
Regarding the firewalls, I think it is good to have a comprehensive security software in place, and I believe they provide crucial protection for our network.
What I personally appreciate about FortiCNAPP is that I think it is a good product and a good firewall because it usually offers many options for the company. I believe my partners, who are technicians, often prefer this kind of product because it is better for the end-user.
Automated policy recommendations with this solution do help to improve security.
What needs improvement?
When considering improvements for FortiCNAPP, I think there could be enhancements regarding the license, possibly adding more options to it.
I think that more options in the license would be beneficial.
What do I think about the stability of the solution?
At the moment, I am not using the Lacework feature with this product.
Currently, we are not using machine learning or artificial intelligence with FortiCNAPP.
How are customer service and support?
I would rate the technical support of FortiGate an eight.
How was the initial setup?
The deployment time for the solution usually depends on the specific requirements. I would estimate it might take one day or two to four hours depending on those requirements.
What other advice do I have?
We are a partner of FortiGate, but we have to buy from a distributor to acquire FortiGate products. This is necessary for us, and I think this process is probably the same in England, but I am not certain.
I think it is easy to integrate FortiCNAPP with other tools, including DevOps tools and products such as Cisco and Palo Alto.
I would rate this review an eight overall.
Munjal Bhalgama
Security has improved and VPN access saves time while support responds quickly
Reviewed on Mar 06, 2026
Review provided by PeerSpot
What is our primary use case?
FortiCNAPP is mainly used from a security point of view. Some VPNs charge for their solutions, but Fortinet provides a free-of-cost VPN solution, making it more reliable and cost-effective for clients.
What is most valuable?
FortiCNAPP definitely brings time-saving benefits, and security is the main concern for the company.
What needs improvement?
Policy implementation is quite complex, and the stability will take more time for the solutions. There is definitely room for improvement in policy implementation.
For how long have I used the solution?
I have been working with Fortinet FortiCNAPP for the last five to ten years.
How are customer service and support?
Fortinet's technical support is definitely helpful and responsive. The response time for solutions or support is quick compared to other UTMs, which is beneficial.
What about the implementation team?
I do deployment as well for my customers.
What's my experience with pricing, setup cost, and licensing?
The pricing is a mediator compared to other products; it is not that much higher and not much lower than other products, making it a very affordable price.
What other advice do I have?
Policy implementation is one part of the solution; every customer needs particular policies for groups or department-wise needs, which takes time. I am not currently using FortiCNAPP's integration with DevOps tools; some inquiries are running, but it will take time to close, and I hope it will be done in the future.
The time for implementation of this product depends on the network and users; it varies based on how many users and networks are involved, as well as what downtimes are allowed. The maximum number of users I have encountered is approximately 300 or 400.
It took me weeks to deploy, gradually applying the policies and all of that, and it depends on the circumstances. FortiCNAPP's continuous compliance and security monitoring are gradually upgraded, which is why the solutions also get upgraded, and it depends on the UTMs.
I would rate this product 9 out of 10.
Mark Freeborough
Network segmentation has strengthened access control and now streamlines automated threat response
Reviewed on Feb 19, 2026
Review from a verified AWS customer
What is our primary use case?
FortiCNAPP is typically used for network access control. The standard use cases for FortiCNAPP center around reporting and automated responses, particularly in IoT environments and workflow automation. Various environments require these tools, and SOC users may utilize them as well. FortiCNAPP serves as a gateway to numerous other products and services in the Fortinet portfolio.
What is most valuable?
The most valuable features in FortiCNAPP include robust network segmentation and restricting access to network assets. It also supports security measures by leveraging security fabrics for better enforcement and policy enforcement. FortiCNAPP integrates with SIEM solutions, and we offer different SIEM options that work with Fortinet and AlienVault, among others, providing multiple scenarios.
FortiCNAPP's automated policy recommendations significantly help improve security measures as part of an overall service wrap. When deploying a Fortinet SD-WAN or network, these tools provide greater visibility to vulnerabilities and enhanced security on the network. It functions as a proactive tool, enabling me to identify threats quickly and automate responses.
What needs improvement?
FortiCNAPP performs well in terms of threat notification and response times. However, the solution could be more user-friendly and intuitive. When managing the platform, navigating to certain details can sometimes feel clunky, so the interface needs to be more accessible.
For how long have I used the solution?
I have been at MLL for five years, and the organization has been a Fortinet partner for at least that long, probably longer. I have been aware of Fortinet for considerably longer, as I have worked at other organizations that provided Fortinet.
What do I think about the stability of the solution?
Fortinet provides very strong technical support. They respond within the service level agreements and are proactive in their approach. We also have a skilled in-house team that is highly knowledgeable about Fortinet and accomplishes tasks that Fortinet has not done, with innovative people on the team. Overall, they are effective at responding and fulfilling their responsibilities.
What do I think about the scalability of the solution?
FortiCNAPP deployment timeframes vary depending on customer size and the complexity of requirements. For small to medium customers, deployment does not take an extended period. For complex large customers, global deployments, or large public sector customers, the process can take longer. The duration depends on various factors including compliance requirements and other considerations.
How are customer service and support?
I provide deployment services, supplying, installing, and maintaining the entire service.
Some of my colleagues may utilize FortiCNAPP's integration with DevOps tools, though I am not extensively familiar with this capability. My technical teams do utilize integration with DevOps tools, as it performs significantly with automation regarding sophisticated challenges. We have an in-house development team that works on this, focusing on how it integrates primarily with the security fabric. Fortinet has their own developer networks, and we also explore what they may have accomplished previously. In terms of integration, FortiCNAPP performs substantially with DevOps tools, though this would depend on what our teams choose to implement.
How was the initial setup?
Approximately five to ten people from my organization participate in deployment, and their skill levels vary.
What was our ROI?
My experience with FortiCNAPP's pricing demonstrates that we conduct extensive work with Fortinet and minimal work elsewhere. We focus on selling the value of the solution, which I find to be highly competitive within the Fortinet world. Overall total cost of ownership is critical; we demonstrate ROI by showing how it saves time and optimizes roles for staff to focus on more important tasks. The pricing is competitive, further supported by special pricing based on our engagement level with Fortinet, which is advantageous. FortiCNAPP is a competitive and robust solution, the only one in the IT sphere that addresses all quadrants in the Gartner Quadrants.
What other advice do I have?
Some of my colleagues may utilize FortiCNAPP's integration with DevOps tools, though I am not extensively familiar with this capability. I would rate this review as a nine out of ten.
Ashenafi M.
Unified Cloud Security Visibility with Smart Risk Prioritization
Reviewed on Feb 18, 2026
Review provided by G2
What do you like best about the product?
What I like best about FortiCNAPP is its unified visibility across cloud infrastructure, workloads, and identities in a single platform. Instead of using separate tools for CSPM, CIEM, and vulnerability management, everything is integrated, which makes monitoring and remediation much more efficient. I also appreciate the real-time risk prioritization. It doesn’t just show vulnerabilities, but helps correlate misconfigurations, exposed workloads, and identity risks to highlight what actually matters. The automation capabilities for compliance checks and policy enforcement are another strong point, especially in dynamic cloud environments.
What do you dislike about the product?
One area that could be improved is the user interface, especially for new users. While the platform is powerful, the number of features and dashboards can feel overwhelming at first, and it takes some time to fully understand how everything connects. The initial configuration and policy tuning also require a solid understanding of cloud security concepts, which may be challenging for smaller teams without dedicated cloud security expertise. Additionally, more detailed documentation and practical implementation examples would make onboarding smoother.
What problems is the product solving and how is that benefiting you?
FortiCNAPP helps solve the challenge of fragmented cloud security visibility. In modern cloud environments, risks often come from multiple areas such as misconfigurations, excessive identity permissions, vulnerable workloads, and exposed containers. Managing these risks across different tools can create blind spots and slow down response times.
By consolidating CSPM, CIEM, vulnerability management, and runtime protection into a single platform, FortiCNAPP reduces complexity and improves risk prioritization. Instead of reacting to hundreds of low-impact alerts, it correlates findings to highlight the most critical attack paths. This has benefited me by improving efficiency in identifying high-risk issues, reducing manual investigation time, and strengthening overall cloud security posture. It also supports compliance monitoring, which makes reporting and audits much more manageable.
By consolidating CSPM, CIEM, vulnerability management, and runtime protection into a single platform, FortiCNAPP reduces complexity and improves risk prioritization. Instead of reacting to hundreds of low-impact alerts, it correlates findings to highlight the most critical attack paths. This has benefited me by improving efficiency in identifying high-risk issues, reducing manual investigation time, and strengthening overall cloud security posture. It also supports compliance monitoring, which makes reporting and audits much more manageable.
Food Production
Neutral Cloud Visibility and Compliance, but Setup and Alert Tuning Take Time
Reviewed on Feb 17, 2026
Review provided by G2
What do you like best about the product?
Good visibility across cloud resources
Helpful posture management and compliance reporting
Easy-to-understand dashboards
Integrates well with other Fortinet security products
Good alerting for misconfigurations and risky cloud permissions
Helpful posture management and compliance reporting
Easy-to-understand dashboards
Integrates well with other Fortinet security products
Good alerting for misconfigurations and risky cloud permissions
What do you dislike about the product?
Initial setup and onboarding can take time
Some reports and dashboards could be more customizable
Occasionally too many alerts without proper tuning..
Some reports and dashboards could be more customizable
Occasionally too many alerts without proper tuning..
What problems is the product solving and how is that benefiting you?
FortiCNAPP helps detect cloud misconfigurations, weak security controls, and risky permissions. It improves cloud security posture and reduces the risk of breaches by continuously monitoring cloud environments and providing actionable remediation recommendations.
Internet
Diverse Apps, Trustworthy Security, and a Simple, Easy-to-Use Interface
Reviewed on Feb 05, 2026
Review provided by G2
What do you like best about the product?
the diversity of applications and softwares is very helpfull, also the platform security is very trustworthy, the website interface is also very simple and easy to use.
What do you dislike about the product?
the setup qnd configuration process is hard to understand, the lavk of documentation is also an issue specially for new users of the platform, also it would be a great change if the prices were a bit lower
What problems is the product solving and how is that benefiting you?
It provides a single dashboard for viewing and managing our security posture across all cloud service providers. It’s been a big help in spotting misconfigurations early, and it saves a lot of time overall.
Karan B.
Effortless Setup with Stellar Features
Reviewed on Oct 29, 2025
Review provided by G2
What do you like best about the product?
I found Lacework FortiCNAPP incredibly smooth to set up, which was neither tricky nor difficult at all. This ease of installation was something I deeply appreciated. During my hackathon experience, it effectively helped me in publishing my app and mimicking a production-level scenario for my project. This showed me its potential to be a great tool for application development and project presentation. I also loved the peer review feature, which provided authentic previews that were immensely helpful in decision-making. The platform’s associations with reputed partners like G2, HubSpot, and Salesforce highlighted its well-established and trustworthy nature. Additionally, I remember the features like vulnerability management and the alerting and prioritizing capabilities as excellent facets of Lacework FortiCNAPP. The single entity dashboard offering comprehensive visibility across multi-cloud environments, including AWS, Azure, and Kubernetes, was remarkable, helping greatly in monitoring the security posture. These aspects were impressive and beneficial, making it easy to use and efficient for its purposes.
What do you dislike about the product?
{"I find that the integration experience with Lacework FortiCNAPP could be enhanced. The process of linking it up with specific software tools like Terraform, remediation code, or a normal CI/CD system could feel more comprehensive and streamlined. Improving this aspect could make these integrations more efficient and less cumbersome."}
What problems is the product solving and how is that benefiting you?
Lacework FortiCNAPP helped me with app deployment and mimicking production scenarios during a hackathon, facilitating authentic peer reviews and decision-making.
Sai Tharun Kumar
Improving security insights has been helpful but inconsistent vulnerability tracking needs attention
Reviewed on Oct 29, 2025
Review from a verified AWS customer
What is our primary use case?
The major use case for Lacework FortiCNAPP is for security.
I'm using it for security internally for my company.
What is most valuable?
The machine learning capability in Lacework FortiCNAPP is used for threat detection.
Automated policy recommendation helps to improve my security measures in general.
I usually use certain policies in my workspace, like if there are some alerts or something.
Continuous compliance and security monitoring are good, but they need more improvement in the vulnerabilities part.
What needs improvement?
The vulnerability part is not systematically organized; it is all clumsy in the web UI, and it is not user-friendly.
Regarding improvements, the vulnerability part, recent changes with user management, and Fortinet IM coming into place, which is not helpful at all because it cuts out the automation part, are the most important things.
Lacework FortiCNAPP should have a new clean UI and ease of access for the users as that should be the main concern.
There are limitations regarding the scalability of Lacework FortiCNAPP.
There are also more limitations with integrations like GitHub or any other pipeline, CI/CD, or ISD.
It is glitchy and works well only sometimes, and most of the time, the reports or other things are not properly calculated or circulated with the teams.
For how long have I used the solution?
I have been using Lacework FortiCNAPP for about two years.
What do I think about the stability of the solution?
The threat response time is good; we haven't faced any major threats as of now.
What do I think about the scalability of the solution?
There are limitations regarding the scalability of Lacework FortiCNAPP.
How are customer service and support?
Technical support from Fortinet is good; I get feedback and responses quickly.
How was the initial setup?
The installation of Lacework FortiCNAPP is quite complicated, especially regarding the settings.
We face some issues with troubleshooting the settings.
Which other solutions did I evaluate?
I see some big differences between Lacework FortiCNAPP and Microsoft.
The ease of access is better with Lacework FortiCNAPP, while Microsoft is more complex.
What other advice do I have?
I'm not aware of the pricing because I've seen it with my lead.
If I do these integrations, I see some impact on the DevSecOps workflow.
The integrations, like with GitHub, help with alerts directly over there.
The positive impacts I see from Lacework FortiCNAPP are majorly regarding security itself, but it has a long way to improve; there are many things to improve, and I have had many connects with the team to provide my feedback and requirements.
The review rating for Lacework FortiCNAPP is 6.