Fortinet black logo

Administration Guide

Home FortiPAM 1.3.0 Administration Guide
1.3.0
1.3.0
1.2.0
1.1.2
1.1.1
1.1.0
1.0.3
1.0.2
1.0.1
1.0.0

Introduction

Introduction

FortiPAM is a privileged access management solution. FortiPAM solutions are an important part of an enterprise network, providing role-based access, auditing, and security options for privileged users (users that have system access beyond that of a regular user).

FortiPAM delivers the following functionalities:

  • Credential vaulting: Users do not need credentials, reducing the risk of credential leaking as no sensitive data is on the user system after a session. Passwords are automatically changed.

  • Privileged account access control: Users can only access FortiPAM resources based on their roles (standard user or admin user).

    FortiPAM offers secret permission control to access a target server. Admin users can define common policies and a hierarchical approval system for standard users to access sensitive information. FortiPAM also provides options to control risky user activities such as a user attempting to encrypt the disk.

    FortiPAM offers ZTNA tag-based and protocol-based access control (RDP, SSH, VNC, and WEB) and allows access from anywhere, including native web-based access.

  • Privileged activity monitoring and recording: FortiPAM can monitor, record, and audit privileged user activities.

    FortiPAM provides information on sessions, user keystrokes, and mouse events.

FortiPAM 1.3.0 requires FortiClient 7.2.3 or above to offer the full set of functionalities.
FortiPAM on a NAT internal network

Previous
Next

Introduction

FortiPAM is a privileged access management solution. FortiPAM solutions are an important part of an enterprise network, providing role-based access, auditing, and security options for privileged users (users that have system access beyond that of a regular user).

FortiPAM delivers the following functionalities:

  • Credential vaulting: Users do not need credentials, reducing the risk of credential leaking as no sensitive data is on the user system after a session. Passwords are automatically changed.

  • Privileged account access control: Users can only access FortiPAM resources based on their roles (standard user or admin user).

    FortiPAM offers secret permission control to access a target server. Admin users can define common policies and a hierarchical approval system for standard users to access sensitive information. FortiPAM also provides options to control risky user activities such as a user attempting to encrypt the disk.

    FortiPAM offers ZTNA tag-based and protocol-based access control (RDP, SSH, VNC, and WEB) and allows access from anywhere, including native web-based access.

  • Privileged activity monitoring and recording: FortiPAM can monitor, record, and audit privileged user activities.

    FortiPAM provides information on sessions, user keystrokes, and mouse events.

FortiPAM 1.3.0 requires FortiClient 7.2.3 or above to offer the full set of functionalities.
FortiPAM on a NAT internal network

Previous
Next