FortiCNAPP Reviews & Product Details

What I like best about FortiCNAPP is its unified visibility across cloud infrastructure, workloads, and identities in a single platform. Instead of using separate tools for CSPM, CIEM, and vulnerability management, everything is integrated, which makes monitoring and remediation much more efficient. I also appreciate the real-time risk prioritization. It doesn’t just show vulnerabilities, but helps correlate misconfigurations, exposed workloads, and identity risks to highlight what actually matters. The automation capabilities for compliance checks and policy enforcement are another strong point, especially in dynamic cloud environments. Review collected by and hosted on G2.com.

One area that could be improved is the user interface, especially for new users. While the platform is powerful, the number of features and dashboards can feel overwhelming at first, and it takes some time to fully understand how everything connects. The initial configuration and policy tuning also require a solid understanding of cloud security concepts, which may be challenging for smaller teams without dedicated cloud security expertise. Additionally, more detailed documentation and practical implementation examples would make onboarding smoother. Review collected by and hosted on G2.com.

I found Lacework FortiCNAPP incredibly smooth to set up, which was neither tricky nor difficult at all. This ease of installation was something I deeply appreciated. During my hackathon experience, it effectively helped me in publishing my app and mimicking a production-level scenario for my project. This showed me its potential to be a great tool for application development and project presentation. I also loved the peer review feature, which provided authentic previews that were immensely helpful in decision-making. The platform’s associations with reputed partners like G2, HubSpot, and Salesforce highlighted its well-established and trustworthy nature. Additionally, I remember the features like vulnerability management and the alerting and prioritizing capabilities as excellent facets of Lacework FortiCNAPP. The single entity dashboard offering comprehensive visibility across multi-cloud environments, including AWS, Azure, and Kubernetes, was remarkable, helping greatly in monitoring the security posture. These aspects were impressive and beneficial, making it easy to use and efficient for its purposes. Review collected by and hosted on G2.com.

{"I find that the integration experience with Lacework FortiCNAPP could be enhanced. The process of linking it up with specific software tools like Terraform, remediation code, or a normal CI/CD system could feel more comprehensive and streamlined. Improving this aspect could make these integrations more efficient and less cumbersome."} Review collected by and hosted on G2.com.

the diversity of applications and softwares is very helpfull, also the platform security is very trustworthy, the website interface is also very simple and easy to use. Review collected by and hosted on G2.com.

the setup qnd configuration process is hard to understand, the lavk of documentation is also an issue specially for new users of the platform, also it would be a great change if the prices were a bit lower Review collected by and hosted on G2.com.

Good visibility across cloud resources

Helpful posture management and compliance reporting

Easy-to-understand dashboards

Integrates well with other Fortinet security products

Good alerting for misconfigurations and risky cloud permissions Review collected by and hosted on G2.com.

Initial setup and onboarding can take time

Some reports and dashboards could be more customizable

Occasionally too many alerts without proper tuning.. Review collected by and hosted on G2.com.

The provided data is very useful, and the GUI is easy to navigate. Another great feature is the monitoring system, which enables quick detection of issues. Review collected by and hosted on G2.com.

The initial setup process requires some time and effort which can be tedious. Additionally l, the large volume of data presented at the start might seem overwhelming for new users. Review collected by and hosted on G2.com.

Lacework offers complete visibility over our entire cloud infrastructure, thus facilitating threat detection and compliance with security standards. Review collected by and hosted on G2.com.

The initial setup can be a bit complex for new users, but once in place, the platform works perfectly. Review collected by and hosted on G2.com.

The setup was very easy for teams to navigate. There were a variety of up to date templates depending on your orchestration. Very easy to deploy the agent regardless of your setup.

The network diagrams (polygraphs) are really helpful when responding to an alert or just doing Threat modeling, Its nice to be able to very quickly visualize communications between your services.

Integrating into the container registry was really easy and provides us Vuln visibility prior to deployments. The mapping of containers in the registry to containers at runtime is very intuitive, helps you prioritize which items to look at first. Review collected by and hosted on G2.com.

They have not released any meaninful features in the last 12 months and are really falling behind everyone else in this space. Every call we seem to have with them, our prior counterparts have been fired or left so you need to restart the conversation. Getting support has gone from OK to a nightmare.

The vulnerability management at runtime only updates once per day and a vuln must be cleared for at-least 24 hours before it will no longer show in the platform. This makes closing out issues after a code change or dependency update a more drawn out process. Would be nice if it could be done on demand.

Lacework has nice documentation on how to remediate findings in AWS, however they only provide details on how to do it in the AWS console, it would be helpful if they could also provide terraform samples, as that could greatly increase the speed of remediation. Review collected by and hosted on G2.com.

I like implementing Lacework as it's very easy and the continuous development means you stay ahead of the curve. It can also help you gain complete visibility of your workloads in almost all security tasks that will be assigned to you. Review collected by and hosted on G2.com.

I think it would be great to be able to easily control what permissions the agent has on the endpoints. And to get the most value, you need to be able to write queries instead of human-readable questions. And in cases columns are unnecessarily truncated. Review collected by and hosted on G2.com.

I like the multi cloud feature of Lacework including its high reporting standards. Review collected by and hosted on G2.com.

If I am a business owner, I wouldn't only think of cloud security, and then there are many other respects to look into for proper security posture management or vulnerability management. So spending on such a new tool which is yet to make a mark would be a tough choice. Review collected by and hosted on G2.com.

Its functions have been essential to detec anomalies, but do not cause fatigue in the control panel or tools. Additionally, I love that it gives us a single dashboard to view all of our workloads, and the daily alerts help our incident response team prioritize and address urgent issues. Review collected by and hosted on G2.com.

Starting to use this platform was one of the best decisions our organization has made. We were looking for an easy-to-use solution that covered all our assets in the cloud. Lacework has worked perfectly. I have nothing negative to say here about this tool. Review collected by and hosted on G2.com.