FortiCNAPP is mainly used from a security point of view. Some VPNs charge for their solutions, but Fortinet provides a free-of-cost VPN solution, making it more reliable and cost-effective for clients.
Fortinet FortiCNAPP
Fortinet Inc.External reviews
385 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Security has improved and VPN access saves time while support responds quickly
What is our primary use case?
What is most valuable?
FortiCNAPP definitely brings time-saving benefits, and security is the main concern for the company.
What needs improvement?
Policy implementation is quite complex, and the stability will take more time for the solutions. There is definitely room for improvement in policy implementation.
For how long have I used the solution?
I have been working with Fortinet FortiCNAPP for the last five to ten years.
How are customer service and support?
Fortinet's technical support is definitely helpful and responsive. The response time for solutions or support is quick compared to other UTMs, which is beneficial.
What about the implementation team?
I do deployment as well for my customers.
What's my experience with pricing, setup cost, and licensing?
The pricing is a mediator compared to other products; it is not that much higher and not much lower than other products, making it a very affordable price.
What other advice do I have?
Policy implementation is one part of the solution; every customer needs particular policies for groups or department-wise needs, which takes time. I am not currently using FortiCNAPP's integration with DevOps tools; some inquiries are running, but it will take time to close, and I hope it will be done in the future.
The time for implementation of this product depends on the network and users; it varies based on how many users and networks are involved, as well as what downtimes are allowed. The maximum number of users I have encountered is approximately 300 or 400.
It took me weeks to deploy, gradually applying the policies and all of that, and it depends on the circumstances. FortiCNAPP's continuous compliance and security monitoring are gradually upgraded, which is why the solutions also get upgraded, and it depends on the UTMs.
I would rate this product 9 out of 10.
Network segmentation has strengthened access control and now streamlines automated threat response
What is our primary use case?
FortiCNAPP is typically used for network access control. The standard use cases for FortiCNAPP center around reporting and automated responses, particularly in IoT environments and workflow automation. Various environments require these tools, and SOC users may utilize them as well. FortiCNAPP serves as a gateway to numerous other products and services in the Fortinet portfolio.
What is most valuable?
The most valuable features in FortiCNAPP include robust network segmentation and restricting access to network assets. It also supports security measures by leveraging security fabrics for better enforcement and policy enforcement. FortiCNAPP integrates with SIEM solutions, and we offer different SIEM options that work with Fortinet and AlienVault, among others, providing multiple scenarios.
FortiCNAPP's automated policy recommendations significantly help improve security measures as part of an overall service wrap. When deploying a Fortinet SD-WAN or network, these tools provide greater visibility to vulnerabilities and enhanced security on the network. It functions as a proactive tool, enabling me to identify threats quickly and automate responses.
What needs improvement?
FortiCNAPP performs well in terms of threat notification and response times. However, the solution could be more user-friendly and intuitive. When managing the platform, navigating to certain details can sometimes feel clunky, so the interface needs to be more accessible.
For how long have I used the solution?
I have been at MLL for five years, and the organization has been a Fortinet partner for at least that long, probably longer. I have been aware of Fortinet for considerably longer, as I have worked at other organizations that provided Fortinet.
What do I think about the stability of the solution?
Fortinet provides very strong technical support. They respond within the service level agreements and are proactive in their approach. We also have a skilled in-house team that is highly knowledgeable about Fortinet and accomplishes tasks that Fortinet has not done, with innovative people on the team. Overall, they are effective at responding and fulfilling their responsibilities.
What do I think about the scalability of the solution?
FortiCNAPP deployment timeframes vary depending on customer size and the complexity of requirements. For small to medium customers, deployment does not take an extended period. For complex large customers, global deployments, or large public sector customers, the process can take longer. The duration depends on various factors including compliance requirements and other considerations.
How are customer service and support?
I provide deployment services, supplying, installing, and maintaining the entire service.
Some of my colleagues may utilize FortiCNAPP's integration with DevOps tools, though I am not extensively familiar with this capability. My technical teams do utilize integration with DevOps tools, as it performs significantly with automation regarding sophisticated challenges. We have an in-house development team that works on this, focusing on how it integrates primarily with the security fabric. Fortinet has their own developer networks, and we also explore what they may have accomplished previously. In terms of integration, FortiCNAPP performs substantially with DevOps tools, though this would depend on what our teams choose to implement.
How was the initial setup?
Approximately five to ten people from my organization participate in deployment, and their skill levels vary.
What was our ROI?
My experience with FortiCNAPP's pricing demonstrates that we conduct extensive work with Fortinet and minimal work elsewhere. We focus on selling the value of the solution, which I find to be highly competitive within the Fortinet world. Overall total cost of ownership is critical; we demonstrate ROI by showing how it saves time and optimizes roles for staff to focus on more important tasks. The pricing is competitive, further supported by special pricing based on our engagement level with Fortinet, which is advantageous. FortiCNAPP is a competitive and robust solution, the only one in the IT sphere that addresses all quadrants in the Gartner Quadrants.
What other advice do I have?
Some of my colleagues may utilize FortiCNAPP's integration with DevOps tools, though I am not extensively familiar with this capability. I would rate this review as a nine out of ten.
Unified Cloud Security Visibility with Smart Risk Prioritization
What do you like best about the product?
What I like best about FortiCNAPP is its unified visibility across cloud infrastructure, workloads, and identities in a single platform. Instead of using separate tools for CSPM, CIEM, and vulnerability management, everything is integrated, which makes monitoring and remediation much more efficient. I also appreciate the real-time risk prioritization. It doesn’t just show vulnerabilities, but helps correlate misconfigurations, exposed workloads, and identity risks to highlight what actually matters. The automation capabilities for compliance checks and policy enforcement are another strong point, especially in dynamic cloud environments.
What do you dislike about the product?
One area that could be improved is the user interface, especially for new users. While the platform is powerful, the number of features and dashboards can feel overwhelming at first, and it takes some time to fully understand how everything connects. The initial configuration and policy tuning also require a solid understanding of cloud security concepts, which may be challenging for smaller teams without dedicated cloud security expertise. Additionally, more detailed documentation and practical implementation examples would make onboarding smoother.
What problems is the product solving and how is that benefiting you?
FortiCNAPP helps solve the challenge of fragmented cloud security visibility. In modern cloud environments, risks often come from multiple areas such as misconfigurations, excessive identity permissions, vulnerable workloads, and exposed containers. Managing these risks across different tools can create blind spots and slow down response times.
By consolidating CSPM, CIEM, vulnerability management, and runtime protection into a single platform, FortiCNAPP reduces complexity and improves risk prioritization. Instead of reacting to hundreds of low-impact alerts, it correlates findings to highlight the most critical attack paths. This has benefited me by improving efficiency in identifying high-risk issues, reducing manual investigation time, and strengthening overall cloud security posture. It also supports compliance monitoring, which makes reporting and audits much more manageable.
By consolidating CSPM, CIEM, vulnerability management, and runtime protection into a single platform, FortiCNAPP reduces complexity and improves risk prioritization. Instead of reacting to hundreds of low-impact alerts, it correlates findings to highlight the most critical attack paths. This has benefited me by improving efficiency in identifying high-risk issues, reducing manual investigation time, and strengthening overall cloud security posture. It also supports compliance monitoring, which makes reporting and audits much more manageable.
Useful Data and Easy Navigation, but Setup Can Be Tedious
What do you like best about the product?
The provided data is very useful, and the GUI is easy to navigate. Another great feature is the monitoring system, which enables quick detection of issues.
What do you dislike about the product?
The initial setup process requires some time and effort which can be tedious. Additionally l, the large volume of data presented at the start might seem overwhelming for new users.
What problems is the product solving and how is that benefiting you?
It really helped in maintaining the alerts for security issues and provides a secured platform.
Platform is good
What do you like best about the product?
Security container and Integration with 3rd party applications
What do you dislike about the product?
Integration documentation not available widely
What problems is the product solving and how is that benefiting you?
Security related problems are managed very well , thus I would recommend it.
It used to best but not anymore!
What do you like best about the product?
easy to implement.
Good with alert handling.
Vulnerability & compliance scanning
Good with alert handling.
Vulnerability & compliance scanning
What do you dislike about the product?
UI can be more user-friendly.
No free trails to educate new customers.
Can improve alert handling.
No free trails to educate new customers.
Can improve alert handling.
What problems is the product solving and how is that benefiting you?
we use Lacework container security for visibility of Docker container images and simplifies vulnerability assessments and malware detection.
Enhance security in your company with this real time threat detection and reporting software
What do you like best about the product?
Some of the best features that I have enjoyed using Lacework are security information and intelligent threat isolation of Lacework. It offers a high level of security since it offers insight of physical security in the cloud infrastructure to offer prompt response. Integrational with other systems like AWS and Azure has been realized to be easy and this implies that one can monitor his or her environments without having to change systems. The many reports and the dashboard allows us to be always in touch with security compliance and be ready to make sound decisions.
What do you dislike about the product?
The one weakness that is worth mentioning about Lacework is that it may be difficult to set up and it occupy a considerable amount of time. This has however brought some inconveniences in the assimilation process of the software into our system since it has been staged in sections. Furthermore, its potential is high as to some functions it might take some time to master them so we would need training for our team. All of these have slightly impacted on our on boarding process by causing a slight lag and also the need to direct more resources in as regards to making sure everyone is on to it.
What problems is the product solving and how is that benefiting you?
Regarding the problems of cloud security management, Lacework provides maximum monitoring and performs automatic threat related analysis and identification. It makes it easier for us to timely identify weaknesses as well as tackle events thus boosting our security level. The software also enhances our compliance prowess through provision of detailed reports and auditors that ease on regulation compliance. Therefore, the team is more effective and assured in the secure cloud environment that enhances our general business processes.
Lacework is a versatile product that has proven invaluable in various use cases
What do you like best about the product?
Its functions have been essential to detec anomalies, but do not cause fatigue in the control panel or tools. Additionally, I love that it gives us a single dashboard to view all of our workloads, and the daily alerts help our incident response team prioritize and address urgent issues.
What do you dislike about the product?
Starting to use this platform was one of the best decisions our organization has made. We were looking for an easy-to-use solution that covered all our assets in the cloud. Lacework has worked perfectly. I have nothing negative to say here about this tool.
What problems is the product solving and how is that benefiting you?
We use Lacework primarily for user and entity behavior analysis. Provides protection guarantee against the latest vulnerabilities and different types of threats. Additionally, they our company significantly improve its security posture in the cloud environment.
We especially value the ability to quickly detect anomalies
What do you like best about the product?
I love that it's really easy to create a panel of widgets that you think are most important and use that to display on a dedicated monitor. We were pleasantly surprised at how easy it was to implement and integrated Lacework into our environment.
What do you dislike about the product?
It is neccessary to spend many hours becoming familiar with the tool to exploit its full potential. And in complex situations, it's sometimes difficult to determine why an alert is high or critical.
What problems is the product solving and how is that benefiting you?
Attack path mapping creates a contextual view beyond that of cloud-native security services. Plus the comprehensive user interface and extensive security features are really what sets it apart from other tools.
Dig into the details to discover inaccurate configurations and vulnerabilities
What do you like best about the product?
I love that the team actively listens to user feedback and releases new features and improvements frequently. The platform is exceptionally easy to use, making it easy to set up and integrates for teams of all size. And I love that it offers buil-in protection for cloud infrastructure, workloads, data, APIs, containers, and access management.
What do you dislike about the product?
I would like it to be able to integrate with a great variety of applications. Also, it would be nice if they could include timely security monitoring. Plus there is room to improve the board.
What problems is the product solving and how is that benefiting you?
Lacework makes cloud security management easy with all-in one platform. It also offers a three-sided view of our cloud environment: code scanning, resources monitoring and hacker view. Advanced reporting also makes it a great option for team meetings.
showing 1 - 10