Multi-layered security across clouds and data centers for Microsoft Azure-based workloads
Extending Advanced Security for Microsoft Azure
More and more enterprises are turning to Microsoft Azure to extend internal data centers and take advantage of the agility of the public cloud. While Azure secures the infrastructure, organizations are responsible for protecting everything they put in it. Fortinet Security Fabric provides Azure and Office 365 users broad protection, native integration and automated management enabling customers with consistent enforcement and visibility across their multi-cloud infrastructure. The Fortinet Security Fabric offers deep multi-layer-security protection and operational benefits for securing web applications, mail applications, preventing zero-day threats and managing global security infrastructures from the cloud.
Fortinet helps customers Connect to the cloud, Protect cloud applications, and Deliver security from the cloud With Fortinet
FortiCWP provides ability to evaluate cloud security posture, detect threats originating from misconfiguration, analyze traffic, evaluate user behavior for threats, and track compliance of workloads in public clouds.
FortiWeb Cloud WAF-as-a-Service is a SaaS cloud-based web application firewall (WAF) that protects public cloud-hosted web applications from the OWASP Top 10, zero-day threats, and other application layer attacks.
The FortiGate-VM on Microsoft Azure delivers NGFW capabilities for organizations of all sizes, with the flexibility to be deployed as a NGFW and/or a VPN gateway.
The FortiWeb Web Application Firewall (WAF) provides advanced features and AI-based machine learning detection engines that defend web applications from vulnerability exploits, bots, malware uploads, DDoS attacks, advanced persistent threats (APTs), and zero-day attacks.
FortiSandbox for Azure enables organizations to defend against advanced threats natively in the cloud, working alongside network, application, email, endpoint security, and other third-party security solutions, or as an extension to their on-premises security architectures to leverage cloud elasticity and scale.
Secured by FortiGuard, FortiMail delivers the latest technologies and intelligence, including integrated sandboxing, to stop even the most sophisticated email-borne threats.
FortiManager provides single-pane-of-glass management for unified, end-to-end protection across the extended enterprise. It delivers insight into network traffic and offers enterprise-class features for threat containment.
FortiAnalyzer delivers critical insight into threats across the entire attack surface and provides Instant visibility, situation awareness, real-time threat intelligence, and actionable analytics.
Visit Azure Marketplace for a complete list of Fortinet products available on Azure
通过实时、全面了解用户正在运行的应用,轻松实施可接受的使用策略,从而提高安全性,并满足合规要求。借助 FortiGuard 应用控制服务,您可以快速创建策略,以允许、拒绝或限制对应用或整个应用类别的访问。
FortiCloud 沙箱服务是一款高级威胁检测解决方案,可执行动态分析,以识别以前未知的恶意软件。FortiCloud 沙箱生成的可执行情报将应用到您网络内的预防控制系统中,从而消除威胁。
FortiGuard 病毒爆发防护服务 (VOS) 通过 FortiCloud 沙箱分析填补了杀毒更新之间的空白,可检测并阻止在特征库更新期间发现的恶意软件威胁,以免波及整个组织。操作系统将启动对我们全球威胁情报数据库的实时查阅。
内容消除与重建 (CDR) 能够实时清除文件中的所有“活动”内容,并生成干净的文件。所有“活动”内容均被视为可疑内容,并予以删除。CDR 将处理所有传入文件,对其进行解构,并删除所有不符合防火墙策略的元素。
FortiGuard IP 信誉服务能够从威胁传感器、CERT、MITRE、合作友商及其他全球来源组成的 Fortinet 分布式网络中聚合恶意源 IP 数据,这些信息来源将协同提供有关恶意数据源的最新威胁情报。从分布式网络网关获取的近乎实时的情报与 FortiGuard 实验室提供的一流研究成果相结合,可确保组织安全无虞,并助力主动拦截攻击。
Our Enterprise (ENT) bundle now includes:
The FortiGuard Enterprise (ENT) Protection bundle is designed to address today’s advanced threat landscape. The Enterprise Bundle consolidates the comprehensive protection needed to protect and defend against all cyberattack channels from the endpoint to the cloud. Including the technologies needed to address today’s challenging OT, compliance, and management concerns. The Enterprise Bundle offers the most comprehensive protection overall. The Enterprise Bundle includes:
The FortiGuard Unified Protection Bundle (UTM) is our traditional Unified Threat Management security bundle. The Unified Protection Bundle extends threat protection across the entire digital attack surface, providing industry-leading defense against sophisticated attacks. The UTM bundle has you covered for web and email-based attacks. The UTM bundle delivers the best package available for a unified threat protection offering. The UTM Bundle includes:
The FortiGuard Advantage:
The FortiGuard Advanced Threat Protection (ATP) bundle provides the foundational security needed to protect and defend against known and unknown cyber threats. The Advanced Threat Protection bundle includes:
| Service | Advanced Threat Protection (ATP) |
Unified Protection (UTM) |
Enterprise Protection (ENT) |
A La Carte Protection |
| Threat Intelligence Service |
✔ |
|||
| Industrial Security Service |
✔ |
✔ |
||
| Security Rating |
✔ |
✔ |
||
| CASB |
✔ |
✔ |
||
| Web Filtering |
✔ | ✔ |
✔ |
|
| Antivirus + Sandboxing |
✔ |
✔ |
✔ |
✔ |
| IPS |
✔ |
✔ |
✔ |
✔ |
| Antispam |
✔ |
✔ |
||
| Internet DB |
✔ |
✔ |
✔ |
|
| IP Reputation |
✔ |
✔ |
✔ | |
| Application Control |
✔ |
✔ |
✔ |
View by:
Fortinet adaptive cloud security enables the broadest set of use cases for Azure.
Cloud Platform Visibility and Control
Application Security
Network Security
Azure Virtual WAN Integration
Fortinet is the first firewall vendor to offer tight integration into the Azure Virtual WAN system, enabling both intra WAN traffic to be scanned for threats and enabling customers to extend their Secure SD-WAN into the Azure Virtual WAN hub. Integration into the Azure Virtual WAN also simplifies deployment and eases automation.
Click here to learn more about these use cases.
As organizations increase their utilization of cloud services, so does the need to securely and efficiently connect to the cloud. Fortinet provides customers with secure and reliable solutions to connect to Azure-based workloads and resources. Fortinet offers a variety of secure connectivity options for Azure, helping customers select the connectivity option that best suits their needs whether they are looking for secure remote access, secure hybrid cloud connectivity or a full-feature cloud security services hub. FortiGate-VMs can be deployed within Azure to provide fully optimized and highly secure communications between SD-WAN branches, datacenters and the cloud. Fortinet’s SD-WAN branch solutions can also seamlessly integrate with Azure’s Virtual WAN.
As organizations increase their compute footprint in the cloud, Fortinet also provides customers with a broad array of security solutions to protect Azure based resources and workloads. Fortinet solutions are tightly integrated and designed to help customers maintain a consistent security posture across applications, clouds and datacenters. Fortinet protects Azure-based applications with solutions including FortiGate-VM next generation firewalls, FortiCWP for cloud platform security, and FortiWeb for web application and API protection (available as a VM, a container, and as a SaaS running in Azure). Fortinet is the only provider offering customers such a broad array of integrated core cloud security products. Furthermore, Fortinet offers the broadest set of security solutions that are natively integrated into the Azure infrastructure and available on the Azure marketplace. Products are available as both pay as you go (PAYG) and bring your own license (BYOL) procurement.
As organizations are strained with limited cloud security resources and expertise, there is a growing preference to consume certain security functionality as a service (SaaS), eliminating the need to manage and maintain security devices. Various Fortinet offerings are available as a Service, forming a rich and broad set of Security as a Service (SECaaS) portfolio. Fortinet’s SECaaS solutions are help organizations address security reduce capital costs and allow fast and simple deployment of new security services. Fortinet SaaS offerings include the new FortiWeb Cloud as a Service which can be procured through the Azure Marketplace.
Available as Flexible Bring-Your-Own-License (BYOL), Pay-As-You-Go (PAYG) licensing, or Security-as-a-Service, for scalable cloud workload deployments
Centralized management and analytics with actionable insights to understand targeted attacks and meet compliance regulations
Natively integrated, broad set of security solutions to address the entire attack surface
APIs and templates for programmatic automation and orchestration
|
In this quick video, learn how Fortinet delivers a natively integrated solution for Microsoft Azure users to protect application workloads beyond standard Azure security services. Fortinet’s Next Generation Firewall (NGFW) enables the broadest protection and automated management for consistent enforcement and visibility across your hybrid cloud infrastructure.
马上观看
FortiWeb Cloud WAF-as-a-Service is a Security-as-a-Service SaaS cloud-based web application firewall (WAF) that protects public cloud-hosted web applications from the OWASP Top 10, zero-day threats, and other application layer attacks.
Requiring no hardware or software, the FortiWeb colony of WAF gateways can run in most Azure regions. This allows organizations to scrub application traffic within the same region their applications reside, addressing performance and regulation concerns, as well as keeping traffic cost to a minimum.
FortiCWP is Fortinet’s Cloud Workload Protection (CWP) solution. FortiCWP uses API level integration into Microsoft Azure management and security services including the Azure Security Center to monitor and track cloud resources including their configurations, activity, traffic flows. FortiCWP will also scan cloud data stores such as Azure Blobs for sensitive or malicious content and produce reports on an organization’s compliance with common regulatory standards. FortiCWP also supports Amazon AWS and Google Cloud Platform.
