The Latest Fortinet News
Product and Solution Information, Press Releases, Announcements

SUNNYVALE, Calif., October 17, 2011 - Fortinet® (NASDAQ: FTNT) - a leading network security provider and the worldwide leader of unified threat management (UTM) solutions – today announced the expansion of its award-winning virtual appliance line with the FortiGate-VM™ for Citrix™ XenServer- based hypervisors and FortiScan-VM™. The FortiGate-VM for XenServer will have the same product model lineup and features as the current FortiGate-VM for VMware™.

FortiScan-VM is a complete vulnerability and compliance management solution that runs as a Virtual Appliance. As an enterprise-grade, carrier-scale software solution that runs on VMware vSphere™ (ESX and ESXi), Citrix XenServer and Open Source XenServer hypervisors, FortiScan-VM integrates endpoint and server vulnerability management, industry and federal compliance, patch management, remediation, auditing and reporting capabilities into a single, unified offering. The new software targets enterprises with existing investments in virtualized infrastructures that face increasingly stringent corporate governance and compliance requirements across finance, healthcare, retail, education, federal and defense markets. FortiScan-VM also targets MSSPs servicing these customers.

FortiScan-VM is deployable in almost any sized organization, ranging from small retail outlets to large enterprises. The software platform’s architecture can easily scale to assess, remediate and audit an enterprise’s growing assets that include devices with an operating system or IP address. The software supports stackable asset groups, meaning the exact number of assets can be configured into the system to avoid over-provisioning and is easily managed through administrative domains. Each instance of the software can support up to 20,000 assets.

Customers have the option of deploying FortiScan-VM as an agent-based or agentless platform. Where an organization’s policy either prohibits or makes it impractical for remote agentless scanning, an agent-based approach may be deployed. This is resolved by populating assets with FortiScan-VM’s lightweight agent through mass installation means or manually. Another advantage of agent-based deployments is that vulnerabilities discovered through scanning not only are reported, but also automatically remediated as well. Those organizations that do not require in-depth scanning and automated remediation of vulnerabilities have the option of implementing the agentless version.

Automated compliance management is provided with easy to install, out-of-the-box compliance policies that include: National Institute of Standards and Technology (NIST), Security Content Automation Protocol (SCAP), Federal Desktop Core Configuration (FDCC), Payment Card Industry Data Security Standard (PCI-DSS), Sarbanes-Oxley (SOX), Gramm-Leach-Bliley Act (GLBA), Federal Information Security Management Act (FISMA), Health Insurance Portability and Accountability Act (HIPAA), ISO 17799 and more.

FortiScan-VM also supports policy updates provided through FortiGuard® Threat Research and Response Vulnerability Management subscription services. The Fortinet Global Security Research team provides vulnerability and compliance management updates to ensure up-to-date protection against sophisticated threats.

“The growing adoption of virtualized infrastructures, coupled with more aggressive corporate governance and regulatory compliance, is driving the need for new and easier to use vulnerability and compliance management (VCM) solutions,” said Patrick Bedwell, vice president of product marketing at Fortinet. “FortiScan-VM represents the next generation of VCM platforms, which we believe will play an important role in helping organizations achieve their corporate governance and compliance objectives while strengthening the security posture of their key assets.”