Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • MSSP Deployment Guide (Organizations)

    Home FortiGate Cloud 24.4.0 MSSP Deployment Guide (Organizations)
    24.4.0
    24.4.0
    24.3.0

    Introduction

    Introduction

    Executive summary

    FortiGate Cloud is a cloud-based software-as-a-service offering with multitenant functionality for managed security service providers (MSSP). MSSPs can leverage Fortinet’s FortiCloud infrastructure, including Fortinet-managed 24/7 datacenters and cloud presence. MSSPs can focus on configuration, management, and customer service without having to go into the data center business. FortiGate Cloud offers zero touch deployment, configuration management, reporting, and analytics. FortiGate Cloud can grow with your and your customer’s requirements, from a single FortiGate to a complete management solution for thousands of devices across multiple customers.

    This deployment guide is intended to cover the key multicustomer configuration needs for using Fortinet’s FortiGate Cloud portal in an MSSP context with multiple customers and administrators. As a cloud management service that Fortinet hosts in Fortinet datacenters, FortiGate Cloud has an enormous scalability range, and is well-suited for MSSPs of all sizes, from a single FortiGate at a single customer site to thousands of FortiGates and thousands of customer sites.

    This guide is specifically about multitenancy and managing administrators and not about detailed configuration of individual FortiGates. See the FortiGate Cloud Administration Guide for detailed FortiGate administration.

    Multitenancy licensing

    FortiGate Cloud supports FortiCloud Organizations for seamless multitenant features designed for managed security service providers across multiple FortiCloud accounts. With Organizations, Identity & Access Management (IAM) users can view an organizational unit (OU) Dashboard for a single pane of glass view of assets across the entire Organization or OUs. Administrators can add additional users with a fine grained permission model (IAM permission profile) and manage the visibility and access to full Organization or specific OU or OU member accounts.

    Managing multiple accounts or customer accounts demands increased flexibility and the establishment of a streamlined process for resource provisioning. This involves structuring accounts, and assets, and implementing a system of fine-grained access controls across multiple accounts. FortiCloud Organizations tackles this challenge by utilizing a hierarchical organizational structure within the tenant hierarchy and simple yet fine-grained user access management to any part of the organization or accounts.

    Paired with the IAM Permissions model operating at an Organizational scope, FortiCloud enables the consistent implementation of secure access management, compliance, and a cost-effective approach to multi-tenancy management. This enhancement boosts operational efficiency and provides a cohesive method for overseeing cloud services through a centralized cloud console.

    With a FortiCloud Premium license (FC-15-CLDPS-219-02-DD), you can create organizations with no limit of member accounts to be added to the organization. Without the FortiCloud Premium license, you can have a maximum of ten member accounts to add to the organization.

    Intended audience

    This guide is intended for an MSSP interested in deploying a multitenant FortiGate Cloud-based offering for their customers. Readers should have a basic understanding of cloud solutions, networking, and security concepts before they begin. Interested audiences may include:

    • MSSP network, wireless, and security architects
    • MSSP network, wireless, and security engineers

    About this guide

    This guide gathers the relevant material to setup FortiGate Cloud for an MSSP. FortiGate Cloud is only one of a suite of cloud portals for multiple Fortinet products. Exploring the suite of Fortinet products is recommended for MSSPs. You can find more information at the following links:

    This deployment guide presents one of many possible ways to deploy the Fortinet solutions. It may also omit specific steps where readers must make design decisions to further configure their devices. It is recommended that readers also review supplementary material found in product admin guides, example guides, cookbooks, release notes, and other documents where appropriate.

    Previous
    Next

    Introduction

    Introduction

    Executive summary

    FortiGate Cloud is a cloud-based software-as-a-service offering with multitenant functionality for managed security service providers (MSSP). MSSPs can leverage Fortinet’s FortiCloud infrastructure, including Fortinet-managed 24/7 datacenters and cloud presence. MSSPs can focus on configuration, management, and customer service without having to go into the data center business. FortiGate Cloud offers zero touch deployment, configuration management, reporting, and analytics. FortiGate Cloud can grow with your and your customer’s requirements, from a single FortiGate to a complete management solution for thousands of devices across multiple customers.

    This deployment guide is intended to cover the key multicustomer configuration needs for using Fortinet’s FortiGate Cloud portal in an MSSP context with multiple customers and administrators. As a cloud management service that Fortinet hosts in Fortinet datacenters, FortiGate Cloud has an enormous scalability range, and is well-suited for MSSPs of all sizes, from a single FortiGate at a single customer site to thousands of FortiGates and thousands of customer sites.

    This guide is specifically about multitenancy and managing administrators and not about detailed configuration of individual FortiGates. See the FortiGate Cloud Administration Guide for detailed FortiGate administration.

    Multitenancy licensing

    FortiGate Cloud supports FortiCloud Organizations for seamless multitenant features designed for managed security service providers across multiple FortiCloud accounts. With Organizations, Identity & Access Management (IAM) users can view an organizational unit (OU) Dashboard for a single pane of glass view of assets across the entire Organization or OUs. Administrators can add additional users with a fine grained permission model (IAM permission profile) and manage the visibility and access to full Organization or specific OU or OU member accounts.

    Managing multiple accounts or customer accounts demands increased flexibility and the establishment of a streamlined process for resource provisioning. This involves structuring accounts, and assets, and implementing a system of fine-grained access controls across multiple accounts. FortiCloud Organizations tackles this challenge by utilizing a hierarchical organizational structure within the tenant hierarchy and simple yet fine-grained user access management to any part of the organization or accounts.

    Paired with the IAM Permissions model operating at an Organizational scope, FortiCloud enables the consistent implementation of secure access management, compliance, and a cost-effective approach to multi-tenancy management. This enhancement boosts operational efficiency and provides a cohesive method for overseeing cloud services through a centralized cloud console.

    With a FortiCloud Premium license (FC-15-CLDPS-219-02-DD), you can create organizations with no limit of member accounts to be added to the organization. Without the FortiCloud Premium license, you can have a maximum of ten member accounts to add to the organization.

    Intended audience

    This guide is intended for an MSSP interested in deploying a multitenant FortiGate Cloud-based offering for their customers. Readers should have a basic understanding of cloud solutions, networking, and security concepts before they begin. Interested audiences may include:

    • MSSP network, wireless, and security architects
    • MSSP network, wireless, and security engineers

    About this guide

    This guide gathers the relevant material to setup FortiGate Cloud for an MSSP. FortiGate Cloud is only one of a suite of cloud portals for multiple Fortinet products. Exploring the suite of Fortinet products is recommended for MSSPs. You can find more information at the following links:

    This deployment guide presents one of many possible ways to deploy the Fortinet solutions. It may also omit specific steps where readers must make design decisions to further configure their devices. It is recommended that readers also review supplementary material found in product admin guides, example guides, cookbooks, release notes, and other documents where appropriate.

    Previous
    Next