2021-Fortinet-ZTNA-Securely Deliver Your Cloud Applications To The New Hybrid Workforce
2021-Fortinet-ZTNA-Securely Deliver Your Cloud Applications To The New Hybrid Workforce
2021-Fortinet-ZTNA-Securely Deliver Your Cloud Applications To The New Hybrid Workforce
By 2025, there will be 12B installed Since nearly every organization needs it,
IoT devices3 hybrid IT use-case requirements have become
more common among Gartner clients.4
1 Gartner Magic Quadrant for Access Management, 12 August 2019
2 Global Workplace Analytics
3 Gartner IoT Forecast
© Fortinet Inc. All Rights Reserved.
4 Gartner Magic Quadrant for Public Cloud Managed Services, 4 May 2020
3
Architectures Change
Remote SaaS
DMZ Remote HQ
Data
Campus
Center
Private
Branch
Cloud
Data
Center
Public
Cloud
• Verify
• Authenticate and verify– on an ongoing basis ü
• Give minimal access
• Segment the network to create small zones of control
• Control access to applications, data, resources
• Grant least privilege access based on need or role
• Assume Breach
• Plan as if attackers are inside and outside the network
• Forget the concept of a “trusted zone”, e.g., ‘in the office’
Security
Fabric
Adaptive Cloud
Security
Broad
visibility and protection of the entire
digital attack surface to better Zero Trust
Access
manage risk
FORTIOS
Integrated
solution that reduces management
complexity and shares threat
intelligence
Automated Security-Driven
Open
Ecosystem
Networking
self-healing networks with AI-driven FortiGuard Threat
security for fast and efficient Intelligence
operations
Endpoints Multi-Cloud
Knowing and
Mobile Controlling
Campus
Data
Center Everyone and
Home
Everything on and
Factory
Call
Center off the Network
Ensures consistent security
Operational
Technologies
policy across the network, the
cloud, and off-network
Branch
Edge Compute
Partners
IoT
Customers
VPN ZTNA
Cloud
Access Proxy
Client DCFW Client
Cloud
Data
Center
Public
• User groups enable bulk configuration Cloud
Access
Verified user identity and
Proxy device posture prior to access
FOS
Policy
Branch Remote
Campus
© Fortinet Inc. All Rights Reserved. 15
ZTNA Automatic Secure Connections
Leveraging Existing
Infrastructure
FortiClient EMS
Policy Continuous Reassessment
& Enforcement
ZTNA Telemetry
Fabric Sync
Tunnel & Posture
Check
Core Elements
• FortiClient EMS configures the ZTNA agent in FortiClient for the secure
FortiClient / FortiClient EMS
connection back to the FortiGate (FortiClient 7.0)
• Authentication Solution
• No Licenses Required
• Simply a feature in FOS & FortiClient to turn on!
• Ongoing verification
• Per session user identity checks
• Per session device posture checks (OS version, A/V status,
vulnerability assessment)