Fabric Coverage

Fabric Coverage

FortiAP Firmware Versions	Non-FortiLink interfaces should not have multiple VLANs configured on them.
FortiCare Support	Appropriate devices should be registered with FortiCare and have valid support coverage.
Anti-Spam	Anti-Spam subscription should be valid.
AntiVirus	AntiVirus subscription should be valid.
Firmware & General Updates	Firmware & General Updates subscription should be valid.
IPS	IPS subscription should be valid.
Outbreak Prevention	Outbreak Prevention subscription should be valid.
Web Filtering	Web Filtering subscription should be valid.
Third Party Router & NAT Devices	No third-party router or NAT devices should be detected in the network.
Unauthorized FortiAPs	All discovered FortiAPs should be authorized or disabled.
Advanced Threat Protection	Suspicious files should be submitted to FortiSandbox appliance or FortiGate Cloud Sandbox for inspection.
Compatible Firmware	All devices in the Security Fabric should have compatible firmware versions.
FortiSandbox	All FortiGates in the Security Fabric can connect to their configured FortiSandbox.

One best practice is not met due to the missing dependency of an additional subscription:

Security Rating

Security Rating subscription should be valid.

Fabric Coverage

FortiAP Firmware Versions	Non-FortiLink interfaces should not have multiple VLANs configured on them.
FortiCare Support	Appropriate devices should be registered with FortiCare and have valid support coverage.
Anti-Spam	Anti-Spam subscription should be valid.
AntiVirus	AntiVirus subscription should be valid.
Firmware & General Updates	Firmware & General Updates subscription should be valid.
IPS	IPS subscription should be valid.
Outbreak Prevention	Outbreak Prevention subscription should be valid.
Web Filtering	Web Filtering subscription should be valid.
Third Party Router & NAT Devices	No third-party router or NAT devices should be detected in the network.
Unauthorized FortiAPs	All discovered FortiAPs should be authorized or disabled.
Advanced Threat Protection	Suspicious files should be submitted to FortiSandbox appliance or FortiGate Cloud Sandbox for inspection.
Compatible Firmware	All devices in the Security Fabric should have compatible firmware versions.
FortiSandbox	All FortiGates in the Security Fabric can connect to their configured FortiSandbox.

One best practice is not met due to the missing dependency of an additional subscription:

Security Rating

Security Rating subscription should be valid.

Secure Networking

Hybrid Mesh Firewall

NOC Management

LAN

WAN

Unified SASE

Single Vendor SASE

Cloud Network Security

Secure Endpoint Connectivity

Web Application / API Protection

Security Operations

Security Operations Automation

Identity

Early Detection & Prevention

Secure Networking

Hybrid Mesh Firewall

NOC Management

LAN

WAN

Communication & Surveillance

Unified SASE

Single Vendor SASE

Secure Endpoint Connectivity

Cloud Network Security

Cloud-Native Security

Web Application / API Protection

Security Operations

Security Operations Automation

Endpoint

Data Protection

Identity

Email

Early Detection & Prevention

Expert Services

Edge Firewall

Orchestration & management

SD Branch

Application Delivery

Single Vendor SASE

Secure Endpoint Connectivity

Secure Private Access

Thin Edge

Identity

Application Gateway

Enterprise Asset Management

Endpoint Agent

Agentless Security Posture

Identity

Wireless

Switching

Identity

Privilege Acccess Management

Next Generation Firewall

Orchestration & management

Expert Services

All

All

Account Management

SAAS Management

SAAS Application Security

Managed Services

Platform as a service (PAAS)

Other SAAS Services

4D Pillars

Cloud

Popular Solutions

NGFW Deployment

Fabric Coverage

Fabric Coverage

Fabric Coverage