FortiClient

Next-Generation Endpoint Protection

Gartner 2019 Magic Quadrant for Endpoint Protection Platforms (EPP)
web product icon forticlient

FortiClient Overview

Endpoints are frequently the target of initial compromise or attacks. One recent study found that 30% of breaches involved malware being installed on endpoints. FortiClient strengthens endpoint security through integrated visibility, control, and proactive defense. With the ability to discover, monitor, and assess endpoint risks, you can ensure endpoint compliance, mitigate risks, and reduce exposure. FortiClient proactively defends against advanced attacks. Its tight integration with the Security Fabric enables policy-based automation to contain threats and control outbreaks. FortiClient is compatible with Fabric-Ready partners to further strengthen enterprises’ security posture.

 

   

FortiClient News

  

FortiClient Video

Fortinet Endpoint-IoT Solution

Monitor, control, and protect the expanding digital attack surface.

立即观看

FortiClient Product Details:

FortiClient is more than advanced endpoint protection. As an integrated agent, FortiClient contains three key modules: Fabric Agent for security Fabric connectivity, the endpoint security modules, and the secure remote access modules. Fabric Agent shares endpoint telemetry with the Security Fabric and delivers broad endpoint visibility, compliance control, and vulnerability management. It provides advanced endpoint protection with pattern-based anti-malware, behavior-based exploit protection, web-filtering, and an application firewall. FortiClient natively integrates with FortiSandbox to detect zero-day threats and custom malware. FortiClient also provides secure remote access with built-in VPN, single-sign-on, and two-factor authentication for added security.



Please see the product datasheet for more information these and many more Product features.

Features and Benefits

icon benefit fortiattack

Broad endpoint visibility

FortiClient Fabric Agent integrates endpoints into the Security Fabric and provides endpoint telemetry, including user identity, protection status, risk scores, unpatched vulnerabilities, security events, and more.
Compliance icon

Endpoint compliance and vulnerability management

Reduce the endpoint attack surface and manage endpoint-borne risk. 
Vulnerability scanning with flexible patching options. Detect and enforce endpoint compliance. 
icon benefits forticlient

Proactive endpoint defense

Anti-exploit, sandbox integration, and behavior and pattern-based malware detection proactively detect and block malware, malicious scripts, document-based, and other advanced attacks.
platform support icon

Automated threat containment

Integration with the Security Fabric enables automated response. Mitigate unpatched vulnerabilities, alert users, and quarantine risky or compromised endpoints to stem an outbreak.
platform support icon

Secure remote access

Reliable, simple, and secure remote access with built-in, always-on VPN, with the added security of two-factor authentication, plus single-sign-on capabilities.
icon benefits management

Easy to deploy and manage

Easy to deploy and manage Modular and light-weight endpoint agents are centrally managed with the Enterprise Manager Server (EMS).
Fabric Agent is compatible with Fabric-Ready endpoint security solutions.

Building a Cybersecurity Workforce

Advanced training for security professionals, technical training for IT professionals, and awareness training for teleworkers.

学到更多

FortiClient Features and Specs

FortiClient contains the following key modules: Fabric Agent for Security Fabric connectivity, the endpoint security modules, and the secure remote access modules. FortiClient integrates with many key components of the Fortinet Security Fabric and is centrally managed by the Enterprise Management Server (EMS).

Try FortiClient Fabric Agent today

Endpoint telemetry for visibility

FortiClient shares endpoint telemetry with the Security Fabric to ensure unified endpoint awareness and deliver integrated endpoint and network security. Endpoint information shared includes device information, OS, security status, vulnerabilities, events, and user ID.


Compliance enforcement

Enables the enforcement of enterprise security policy and use criteria such as the severity of unpatched vulnerabilities, running software, web filtering, and security posture. 

Automation/host quarantine

Automates policy-based response when triggered by security events. For example, automatically quarantine a suspicious or compromised endpoint to contain incidents and prevent outbreaks.


Vulnerability management

Identifies and prioritizes unpatched OS and software vulnerabilities with flexible patching options including auto-patching.


Software inventory

Provides visibility of installed software. In addition to managing licenses, software inventory can improve security hygiene. When software installed is not required for business purposes, it unnecessarily introduces potential vulnerabilities, and thereby increases the likelihood of compromise.


Try FortiClient Fabric Agent today

Anti-malware

Anti-malware leverages FortiGuard Content Pattern Recognition Language (CPRL) , machine learning, and AI to protect endpoint against malware. The pattern-based CPRL is highly effective in detecting and blocking polymorphic malware. It also blocks attack channels and malicious websites.

Anti-exploit

Protects against advanced threats exploiting zero-day and unpatched vulnerabilities. This signature-less and behavioral-based technology detects and blocks memory violation techniques. It shields web browsers, java/flash plug-ins, office applications, PDF readers, load library, and script interpreters from exploit-based attacks.

Web filtering

Powered by FortiGuard research, the web filtering function monitors all web browser activities to enforce web security and acceptable usage policy with 75+ categories. It works across all supported operating systems and works with Google SafeSearch. Admins can set black/white lists, on-/off-net policies, and import FortiGate web filtering policies for consistent enforcement. 

Application firewall

Provides the ability to monitor, allow, or block application traffic by categories. It uses the same categories as FortiGate, enabling consistent application traffic control. It leverages FortiGuard anti-botnet, IPS, and application control intelligence and can prevent the use of unwanted applications including proxy apps and HTTPS messaging apps.

FortiClient leverages the Security Fabric Architecture and integrates with many Security Fabric components:

FortiSandbox

FortiClient natively integrates with FortiSandbox. FortiClient automatically submits files to the sandbox for real-time analysis. Real-time threat intelligence from FortiSandbox is instantly shared across the enterprise.  

FortiGate

FortiClient shares endpoint telemetry with FortiGate enterprise firewalls to enforce endpoint security compliance.  FortiClient telemetry also contributes to the security rating. The diverse VPN client provides secure remote access.

FortiAnalyzer/FortiManager/FortiSIEM

In addition to endpoint telemetry, FortiClient sends logs including vulnerability, traffic, and events for the Network Operation Center (NOC) and Security Operation Center (SOC) for threat analysis and forensic investigation. 

FortiAuthenticator

Enables secure sign-on (SSO) and two-factor authentication.

VPN

FortiClient uses SSL and IPsec VPN to provide secure and reliable access to the corporate network. Two-factor authentication can also be leveraged for additional security. Features such as always-on, auto-connect, dynamic VPN gateway selection and split-tunneling, result in optimized user experience and security. 

Single sign-on

It integrates with FortiAuthenticator identity and access management service to provide single sign-on. 

EMS provides central management of Windows, Mac, Linux, iOS, Android, and Chromebook devices. Features include remote endpoint deployment, client provisioning, Windows AD integration, real-time endpoint status, vulnerability dashboard, software inventory, quarantine management, alerts, and more. 

  Windows MAC OS X Linux Android iOS Chromebook
FABRIC AGENT            
Endpoint telemetry - visibility
Compliance enforcement  
Host quarantine        
Vulnerability management      
Application inventory

     
Secure Access            
VPN ✔*  
SSO        
Endpoint Protection            
Anti-malware
     
Anti-exploit          
Sandbox integration   partial**      
Web filtering  
Application firewall        

*Separate VPN agent

**Can consume Sandbox intelligence  

Our Customers Emphasize the Value of FortiClient in Gartner Peer Insights Reviews

FortiClient is more than endpoint protection. It strengthens enterprises overall security by integrating endpoints with network security and delivering continuous visibility and risk assessment of the endpoints. It supports proactive defense with vulnerability scanning, patching, compliance control and secure remote access.

Many enterprise customers realize the power and effectiveness of FortiClient and have provided positive feedback on Gartner Peer Insights.  Read what end users say about our FortiClient Security Fabric Agent.   

★★★★★
Powerful Endpoint Protection For Your Corporate Devices

Senior Consultant IT in the Manufacturing Industry

“This is a solid all-in-one security product that we use to protect our corporate endpoints. The reason for our investment in this product was that we were looking for enhanced security features such as application control and web-filter for our Internet connected endpoints. Since we already had invested a lot in other Fortinet security products, we decided to also implement the FortiClient Endpoint Protection features and that is a decision we do not regret. With FortiClient we got a lot more than just the security features we needed. One of the greatest values was the ease of management and overview of our endpoints. This includes the vulnerability scanner and software inventory that comes with the latest version, which provides us with an overall threat summary of vulnerabilities on our endpoints.”

★★★★★
Best VPN Client, AV and Vulnerability Management Client

Cyber Security Leader in the Manufacturing Industry

“Fortinet is extremely easy to work with and their support is excellent. The integration of FortiClient with the overall Fortinet ecosystem is a large advantage for us.”

★★★★★
Next Generation Endpoint. Lovely Telemetry and Compliance Function

IT Manager in the Healthcare Industry

“FortiClient brings better endpoint visibility and total control. It knows endpoint vulnerability and only grants endpoint that has minimum requirement.”

★★★★★
An Excellent Multifunctional VPN, AntiVirus & Web Filtering Client

Networks & Infrastructure Manager in the Construction Industry

“We deployed FortiClient to replace multiple products from other vendors. It combines multiple functions, VPN, AV, Application Firewall, Web Filtering [additionally, it integrates with] our Security Fabric, Telemetry & Compliance enforcement.”

★★★★★
Fully Featured EPP Which Was Extremely Easy To Roll Out And Manage

IT Services Manager in the Education Industry

"A huge bonus is the compliance feature which will scan all programs installed on the endpoint and report back on whether that particular version of the program has vulnerabilities.”

★★★★★
Integration FortiClient That Supports Our Work Stations

IT Support in the Transportation Industry

“It is a very good product and the best thing is that it is integrated into a solution with both the [endpoint and] firewall, generating greater security of our workstations.”

For more Peer Insight reviews on FortiClient, click here

 

 
Gartner Peer Insights reviews constitute the subjective opinions of individual end users based on their own experiences, and do not represent the views of Gartner or its affiliates.

FortiClient Use Cases

FortiClient is more than just an advanced endpoint protection solution with a built-in VPN client. It connects the endpoint with the Security Fabric and delivers integrated endpoint and network security. With the modular design, users can deploy FortiClient for some or all of the use cases.  

 

Security Fabric Integration—Endpoint Visibility and Compliance Control

Security Fabric Integration—Endpoint Visibility and Compliance Control

FortiClient ensures endpoint visibility and compliance throughout the Security Fabric and integrates endpoint and network security with automation and segmentation. FortiClient shares endpoint telemetry with the Security Fabric, enabling unified endpoint awareness.

In addition, it is also compatible with third-party anti-malware or endpoint detection and response (EDR) solutions. 

Endpoint Hardening

99% of the vulnerabilities exploited continue to be ones known by security and IT at the time of the incident. FortiClient enables vulnerability scanning with automated patching, software inventory, and application firewall to help reduce the attack surface and boost overall security hygiene.

As part of the telemetry shared throughout the Security Fabric, endpoint vulnerability information allows network security operations teams to take additional measures, such as dynamic access control, to help secure the environment.   

FortiClient enables vulnerability scanning with automated patching

The FortiClient vulnerability dashboard delivers detailed information including category, severity, and can pinpoint the affected endpoints.   

Advanced endpoint protection

The FortiClient enterprise management console shows detailed analysis from FortiSandbox. 

Advanced Endpoint Protection

Secure endpoints with machine learning antimalware and behavioral-based anti-exploit.  Sandbox integrations detect advanced threats, customer malware, and script-based, file-less attacks. Application firewall, intrusion prevention system (IPS), botnet protection, and web content filtering provides additional layers of protection.

FortiClient also natively integrates with FortiSandbox. It can block the execution of any never-before seen file and automatically submit them to the sandbox for real-time analysis. Real-time threat intelligence from FortiSandbox is instantly shared across the enterprise to all endpoints.   

Secure Remote Access

Ensure secure remote access with always-on, SSL/IPsec VPN that supports network segmentation, conditional admission, and integrates with FortiAuthenticator for single sign on, and multi-factor authentication. 

Secure remote access

FortiClient leverages FortiGuard threat intelligence research and services

FG Antivirus

反病毒

FortiGuard 反病毒服务可抵御最新病毒、间谍软件及其他内容级威胁。它使用行业领先的高级检测引擎来防止不断演进的新威胁侵袭您的网络并访问重要内容。

FG AntiBotnet

IP 信誉和反僵尸网络

FortiGuard IP 信誉服务能够从威胁传感器、CERT、MITRE、合作友商及其他全球来源组成的 Fortinet 分布式网络中聚合恶意源 IP 数据,这些信息来源将协同提供有关恶意数据源的最新威胁情报。从分布式网络网关获取的近乎实时的情报与 FortiGuard 实验室提供的一流研究成果相结合,可确保组织安全无虞,并助力主动拦截攻击。

FG Application Control

应用控制

通过实时、全面了解用户正在运行的应用,轻松实施可接受的使用策略,从而提高安全性,并满足合规要求。借助 FortiGuard 应用控制服务,您可以快速创建策略,以允许、拒绝或限制对应用或整个应用类别的访问。

FG Intrusion Prevention

入侵防御

FortiGuard入侵防御服务保护组织免遭最新的网络入侵威胁

FG Web Filtering

Web过滤

通过阻止访问恶意网站、受攻击网站或不良网站来保护组织。

Fuse Community


FortiClient Enterprise Management Server (EMS) Demo

This full working demo shows the Enterprise Management Server (EMS) for FortiClient. Have a look at the Dashboard, FortiClient Status, Vulnerability Scan and Software Inventory.  Check out the Endpoints section and see the summary and available actions, such as quarantine an endpoint.   And you can also configure system settings and scanning options under Endpoint Profile. 

Access the demo

NSS Labs 2018 Advanced Endpoint Protection (AEP) Test

The NSS Labs AEP group test evaluates products for security effectiveness, performance, and total cost of ownership (TCO). These products include endpoint security technologies that combine the protective capabilities of anti-threat products with the detection, investigation, and prevention capabilities of endpoint security products. FortiClient with integrated FortiSandbox earned a “Recommended” rating with average security effectiveness of over 97.3%, zero false positives, and low TCO.

NSS Labs Breach Prevention Systems (BPS) Test 2017

NSS Labs introduced a new group test, BPS focused on detecting and blocking exploits, advanced malware, and evasions. This helps validate the advanced threat response cycle of prevent-detect-mitigate across a number of threat vectors including web, email, and endpoint. Fortinet's Security Fabric consisting of FortiSandbox, FortiGate, FortiMail, and FortiClient integrated together, earned a Recommended award by achieving a block rate of 99.6% and offering the lowest 3-year TCO.

FortiClient Ecosystem

FortiClient provides integration with many leading IT vendors as part of the Fortinet Security Fabric. Below is a list of current FortiClient Alliance Partners: