Skip to content Skip to navigation Skip to footer

FortiClient 7

Fortinet Fabric Agent for Visibility, Control, and ZTNA

Product Download Zero Trust Access For Dummies
FortiClient 7 banner background banner dots


FortiClient Unifies Endpoint Features

FortiClient is a Fabric Agent that delivers protection, compliance, and secure access in a single, modular lightweight client. A Fabric Agent is a bit of endpoint software that runs on an endpoint, such as a laptop or mobile device, that communicates with the Fortinet Security Fabric to provide information, visibility, and control to that device. It also enables secure, remote connectivity to the Security Fabric.

The FortiClient Fabric Agent can:

  • Report to the Security Fabric on the status of a device, including applications running and firmware version.
  • Send any suspicious files to a Fabric Sandbox.
  • Enforce application control, USB control, URL filtering, and firmware upgrade policies.
  • Provide malware protection and application firewall service.
  • Enable the device to connect securely to the Security Fabric over either VPN (SSL or IPsec) or ZTNA tunnels, both encrypted. The connection to the Security Fabric can either be a FortiGate Next-generation Firewall or SASE service.

What’s New in FortiOS 7.2?

With over 300 new features and enhancements, this FortiOS release empowers the Fortinet Security Fabric by introducing new inline security features, more convergence, and simplified operations. 

Learn More

FortiClient Features and Specs

FortiClient contains the following key modules: Fabric Agent for Security Fabric connectivity, the endpoint security modules, and the secure remote access modules. FortiClient integrates with many key components of the Fortinet Security Fabric and is centrally managed by the Enterprise Management Server (EMS).

Try FortiClient Fabric Agent today

View by:

Endpoint telemetry for visibility

FortiClient shares endpoint telemetry with the Security Fabric to ensure unified endpoint awareness and deliver integrated endpoint and network security. Endpoint information shared includes device information, OS, security status, vulnerabilities, events, and user ID.

Compliance enforcement

Enables the enforcement of enterprise security policy and use criteria such as the severity of unpatched vulnerabilities, running software, web filtering, and security posture. 

Automation/host quarantine

Automates policy-based response when triggered by security events. For example, automatically quarantine a suspicious or compromised endpoint to contain incidents and prevent outbreaks.

Vulnerability management

Identifies and prioritizes unpatched OS and software vulnerabilities with flexible patching options including auto-patching.

Software inventory

Provides visibility of installed software. In addition to managing licenses, software inventory can improve security hygiene. When software installed is not required for business purposes, it unnecessarily introduces potential vulnerabilities, and thereby increases the likelihood of compromise.

Try FortiClient Fabric Agent today


Anti-malware leverages FortiGuard Content Pattern Recognition Language (CPRL) , machine learning, and AI to protect endpoint against malware. The pattern-based CPRL is highly effective in detecting and blocking polymorphic malware. It also blocks attack channels and malicious websites.


Protects against advanced threats exploiting zero-day and unpatched vulnerabilities. This signature-less and behavioral-based technology detects and blocks memory violation techniques. It shields web browsers, java/flash plug-ins, office applications, PDF readers, load library, and script interpreters from exploit-based attacks.

Web filtering

Powered by FortiGuard research, the web filtering function monitors all web browser activities to enforce web security and acceptable usage policy with 75+ categories. It works across all supported operating systems and works with Google SafeSearch. Admins can set black/white lists, on-/off-net policies, and import FortiGate web filtering policies for consistent enforcement. 

Application firewall

Provides the ability to monitor, allow, or block application traffic by categories. It uses the same categories as FortiGate, enabling consistent application traffic control. It leverages FortiGuard anti-botnet, IPS, and application control intelligence and can prevent the use of unwanted applications including proxy apps and HTTPS messaging apps.

FortiClient leverages the Security Fabric Architecture and integrates with many Security Fabric components:


FortiClient natively integrates with FortiSandbox. FortiClient automatically submits files to the sandbox for real-time analysis. Real-time threat intelligence from FortiSandbox is instantly shared across the enterprise.  


FortiClient shares endpoint telemetry with FortiGate enterprise firewalls to enforce endpoint security compliance.  FortiClient telemetry also contributes to the security rating. The diverse VPN client provides secure remote access.


In addition to endpoint telemetry, FortiClient sends logs including vulnerability, traffic, and events for the Network Operation Center (NOC) and Security Operation Center (SOC) for threat analysis and forensic investigation. 


Enables secure sign-on (SSO) and two-factor authentication.


FortiClient uses SSL and IPsec VPN to provide secure and reliable access to the corporate network. Two-factor authentication can also be leveraged for additional security. Features such as always-on, auto-connect, dynamic VPN gateway selection and split-tunneling, result in optimized user experience and security. 

Single sign-on

It integrates with FortiAuthenticator identity and access management service to provide single sign-on. 

EMS provides central management of Windows, Mac, Linux, iOS, Android, and Chromebook devices. Features include remote endpoint deployment, client provisioning, Windows AD integration, real-time endpoint status, vulnerability dashboard, software inventory, quarantine management, alerts, and more. 

  Windows MAC OS X Linux Android iOS Chromebook
FABRIC AGENT            
Endpoint telemetry - visibility
Compliance enforcement  
Host quarantine        
Vulnerability management      
Application inventory

Secure Access            
VPN ✔*  
Endpoint Protection            
Sandbox integration   partial**      
Web filtering  
Application firewall        

*Separate VPN agent

**Can consume Sandbox intelligence  

Our Customers Emphasize the Value of FortiClient in Gartner Peer Insights Reviews

FortiClient is more than endpoint protection. It strengthens enterprises overall security by integrating endpoints with network security and delivering continuous visibility and risk assessment of the endpoints. It supports proactive defense with vulnerability scanning, patching, compliance control and secure remote access.

Many enterprise customers realize the power and effectiveness of FortiClient and have provided positive feedback on Gartner Peer Insights.  Read what end users say about our FortiClient Security Fabric Agent.   

Powerful Endpoint Protection For Your Corporate Devices

Senior Consultant IT in the Manufacturing Industry

“This is a solid all-in-one security product that we use to protect our corporate endpoints. The reason for our investment in this product was that we were looking for enhanced security features such as application control and web-filter for our Internet connected endpoints. Since we already had invested a lot in other Fortinet security products, we decided to also implement the FortiClient Endpoint Protection features and that is a decision we do not regret. With FortiClient we got a lot more than just the security features we needed. One of the greatest values was the ease of management and overview of our endpoints. This includes the vulnerability scanner and software inventory that comes with the latest version, which provides us with an overall threat summary of vulnerabilities on our endpoints.”

Best VPN Client, AV and Vulnerability Management Client

Cyber Security Leader in the Manufacturing Industry

“Fortinet is extremely easy to work with and their support is excellent. The integration of FortiClient with the overall Fortinet ecosystem is a large advantage for us.”

Next Generation Endpoint. Lovely Telemetry and Compliance Function

IT Manager in the Healthcare Industry

“FortiClient brings better endpoint visibility and total control. It knows endpoint vulnerability and only grants endpoint that has minimum requirement.”

An Excellent Multifunctional VPN, AntiVirus & Web Filtering Client

Networks & Infrastructure Manager in the Construction Industry

“We deployed FortiClient to replace multiple products from other vendors. It combines multiple functions, VPN, AV, Application Firewall, Web Filtering [additionally, it integrates with] our Security Fabric, Telemetry & Compliance enforcement.”

Fully Featured EPP Which Was Extremely Easy To Roll Out And Manage

IT Services Manager in the Education Industry

"A huge bonus is the compliance feature which will scan all programs installed on the endpoint and report back on whether that particular version of the program has vulnerabilities.”

Integration FortiClient That Supports Our Work Stations

IT Support in the Transportation Industry

“It is a very good product and the best thing is that it is integrated into a solution with both the [endpoint and] firewall, generating greater security of our workstations.”

For more Peer Insight reviews on FortiClient, click here


Gartner Peer Insights reviews constitute the subjective opinions of individual end users based on their own experiences, and do not represent the views of Gartner or its affiliates.

FortiClient leverages FortiGuard threat intelligence research and services


FortiGuard 防毒可阻斷最新病毒、間諜軟體以及其他內容層面的威脅。它採用行業領先的進階偵測引擎來阻止不斷變化的新威脅在您的網路中獲得據點、存取網路中寶貴的內容。

IP 聲譽評等 & 預防殭屍網路安全服務

FortiGuard IP 聲譽評等服務從 Fortinet 分佈式威脅感測器網路、CERT、MITRE、進行合作的競爭對手以及其他全球資源彙集惡意來源 IP 資料,這些資源共同協作,合力提供關於敵對來源的最新威脅情報。憑藉來自分佈式網路閘道近乎即時的情報,再結合 FortiGuard Labs 的世界級研究,組織可得到更安全的保護並對攻擊實施主動攔截。


可對您的客戶正在執行的應用程式獲得無可比擬的即時可視性,並輕鬆實施您可接受的使用原則,進而提高安全性並滿足合規要求。透過 FortiGuard 應用程式控制,您可以快速建立原則來允許、拒絕或限制對應用程式或整個類別的應用程式的存取。


FortiGuard IPS 透過偵測威脅並在威脅侵入到網路裝置前進行封鎖,以此抵禦最新的網路入侵。

Web Filtering

Protects your organization by blocking access to malicious, hacked, or inappropriate websites.

FortiClient Ecosystem

FortiClient provides integration with many leading IT vendors as part of the Fortinet Security Fabric. Below is a list of current FortiClient Alliance Partners:

保護端點免受當今各種設備帶來的威脅,這也許是企業面臨著的一個相當大的挑戰,其中有諸多原因。單獨管理各種端點功能,流程非常複雜且耗時巨大。不同的安全產品之間無法分享情報,導致威脅應對緩慢。另外,缺乏有效管理端點安全性的 IT 專業知識可能會導致威脅進入您的網路。FortiClient 針對廣泛的設備提供易於管理、自動化、完全自訂的端點安全防護,進而消除了這些挑戰。



FortiClient EMS integration with the Fortinet Security Fabric Demo
FortiClient EMS Chromebook For Education

FortiClient Use Cases

FortiClient is more than just an advanced endpoint protection solution with a built-in VPN client. It connects the endpoint with the Security Fabric and delivers integrated endpoint and network security. With the modular design, users can deploy FortiClient for some or all of the use cases.  


View by:

Security Fabric Integration

Endpoint Visibility and Compliance Control

FortiClient ensures endpoint visibility and compliance throughout the Security Fabric and integrates endpoint and network security with automation and segmentation. FortiClient shares endpoint telemetry with the Security Fabric, enabling unified endpoint awareness.

In addition, it is also compatible with third-party anti-malware or endpoint detection and response (EDR) solutions.


Secure Remote Access (VPN, ZTNA)

Ensure secure remote access with always-on, SSL/IPsec VPN that supports network segmentation, conditional admission, and integrates with FortiAuthenticator for single sign on, and multi-factor authentication. 

Secure remote access

Traditional VPN

ZTNA Application Access

ZTNA Application Access

Endpoint Hardening

99% of the vulnerabilities exploited continue to be ones known by security and IT at the time of the incident. FortiClient enables vulnerability scanning with automated patching, software inventory, and application firewall to help reduce the attack surface and boost overall security hygiene.

As part of the telemetry shared throughout the Security Fabric, endpoint vulnerability information allows network security operations teams to take additional measures, such as dynamic access control, to help secure the environment.   

FortiClient enables vulnerability scanning with automated patching

The FortiClient vulnerability dashboard delivers detailed information including category, severity, and can pinpoint the affected endpoints.   

Advanced Endpoint Protection

Secure endpoints with machine learning antimalware and behavioral-based anti-exploit.  Sandbox integrations detect advanced threats, customer malware, and script-based, file-less attacks. Application firewall, intrusion prevention system (IPS), botnet protection, and web content filtering provides additional layers of protection.

FortiClient also natively integrates with FortiSandbox. It can block the execution of any never-before seen file and automatically submit them to the sandbox for real-time analysis. Real-time threat intelligence from FortiSandbox is instantly shared across the enterprise to all endpoints.

Advanced endpoint protection

The FortiClient endpoint management console shows detailed analysis from FortiSandbox. 

Features and Benefits

See the product datasheet for more information.

icon benefits ztna


Delivers better remote access and consistent application access policies
Icon security fabric


Provides telemetry information and leverages integrations to the rest of the Fortinet Security Fabric
icon benefits forticlient

Web Filtering and SaaS Control

Provides web security and content filtering
icon benefits central management

Software Inventory Management

Enables visibility and license management
icon compliance reporting

Dynamic Access Control

Helps automate and simplify compliance
icon automation

Automated Response

Detects and isolates compromised endpoints

FortiClient Product Details

FortiClient can be purchased with three levels of capability: Zero Trust Security, Endpoint Security, and Cloud-based Endpoint Security.

  • Zero Trust Security: The ZTNA Edition of FortiClient provides the requirements for a remote worker to connect to the network with a minimum level of control. This edition enables both ZTNA and VPN encrypted tunnels, as well as URL filtering and USB device control. Central management via FortiClient EMS is included.

  • Endpoint Protection: The EPP/APT Edition of FortiClient expands on the capabilities of the ZTNA Edition by adding AI-based next-generation antivirus (NGAV), endpoint quarantine, and application firewall, as well as support for cloud sandbox.

  • Managed Endpoint Security Services: To simplify the initial deployment and offload ongoing monitoring, Fortinet offers Endpoint-focused managed services to remotely assist with set up, deployment, configuration, vulnerability monitoring, and overall endpoint security monitoring.

See the Models & Specs tab for details.

Building a Cybersecurity Workforce

Advanced training for security professionals, technical training for IT professionals, and awareness training for teleworkers.


FortiClient News