Privileged Access Management
Provide controls for privileged accounts with FortiPAMDownload Data Sheet
FortiPAM provides privileged access management and control for elevated and privileged accounts, processes, and systems across the entire IT environment.
FortiPAM is an integral component of the Fortinet Identity and Access Management (IAM) solution which allows organizations to provide tight security for privileged accounts and privileged credentials. FortiPAM provides the least privileged access to the most sensitive resources within an organization. It enables end-to-end management of privileged accounts, control of privileged user access, and visibility of account usage including monitoring and audit capabilities. These features allow FortiPAM to introduce zero-trust principles to privileged accounts and dramatically lower an organization’s overall attack surface by ensuring privileged accounts and privileged credentials are not misused by accident, by threat actors, or by malicious insiders.
FortiPAM is part of the Fortinet Security Fabric, integrating with products such as FortiClient, FortiAuthenticator, and FortiToken.
Critical assets need to be protected with the highest level of security. FortiPAM is part of the Fortinet Cybersecurity Framework which allows for enhanced security including zero-trust network access (ZTNA) controls when users try to access critical assets.
ZTNA tags can be applied to check device posture for things like vulnerabilities, updated AV signatures, location, and machine groups. These checks are done on a continuous basis so if something changes on the device, it can immediately be disconnected from the critical asset. In this way, FortiPAM ensures that the users and devices accessing critical assets are as secure as possible and prevents threats from impacting the asset.
Use pre-built application- or web-based launchers, or easily create your own launch templates to provide secure access for your organization's most critical resources.
Once launchers for privileged resources have been created, they can be opened by users that have been granted access to them. When launched, all actions within the resource will be monitored and recorded for auditing purposes with ability to terminate sessions. In addition, based on policy, passwords for the resources can be changed on a scheduled basis or when the resource is checked in by the user.
假設僅因為裝置已連線至網路，所以應該能夠存取所有內容，這是不安全的。Fortinet 零信任存取持續驗證誰以及如何使用您的資源。IoT 和端點裝置經過識別和保護，而 IT 團隊可以全面掌握和控制連接到網路的內容。
查看更多解決方案手冊、eBook、產品資料表、分析師報告。 Go to Resource Center >
Learn more about FortiPAM 聯絡我們 >