Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY 26.1.99
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
All Products
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Web Application Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • Web Application / API Protection
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions
    • All Products

    Feature Administration Guide

    Home FortiSASE Feature Administration Guide

    Secure Browser

    Secure Browser

    FortiSASE supports integrated management of the FortiSASE Secure Browser extension used with unmanaged and contractor devices or deployed on top of existing agent (FortiClient) and agentless (Proxy) deployments. With the deployment of the FortiSASE Secure Browser extension, administrators can gain full visibility into browser activity without deep inspection, can monitor and block web-based threats, and can prevent data exfiltration.

    The web browser is the most common application used on endpoints for accessing internet and local applications. This makes it the most common vector for highly evasive attacks such as phishing, malware and other malicious content and files. In addition, the browser is also a source of data loss of sensitive information through copy-and-paste of content to file formats, physical printing, or by unintentionally screen sharing during remote meetings.

    FortiSASE Secure Browser through a browser extension for supported web browsers including Google Chrome and Microsoft Edge can mitigate client-side threats on endpoints themselves and complement the protection already provided by steering web traffic to FortiSASE using agent and agentless solutions.

    This feature is a select availability feature in FortiSASE that is not enabled by default on new instances. If you require this feature for your new or existing FortiSASE instance, create a new ticket with FortiCare Support.

    Prerequisites

    See Secure Browser.

    Considerations

    • Currently, the Display watermark website display option is not applied when saving a local copy of a website.

    • Currently, the Pasting text copied from specified websites option for URL domain group overrides is not applied for websites including AI applications containing code blocks with an inline copy button.

    • In private browsing mode, browser extensions are disabled by default and must be enabled by the end user. For most deployments, it is highly recommended to disable private browsing mode (Incognito mode in Google Chrome and InPrivate mode in Microsoft Edge) in web browsers on all devices.

    • IdP attribute mapping is important for user assignment rules, used to match the contents of attributes to assign secure browser profiles to specific users or groups of users. Email is a required attribute for Secure Browser user assignment rules.

    See Secure Browser.

    Previous
    Next

    Secure Browser

    Secure Browser

    FortiSASE supports integrated management of the FortiSASE Secure Browser extension used with unmanaged and contractor devices or deployed on top of existing agent (FortiClient) and agentless (Proxy) deployments. With the deployment of the FortiSASE Secure Browser extension, administrators can gain full visibility into browser activity without deep inspection, can monitor and block web-based threats, and can prevent data exfiltration.

    The web browser is the most common application used on endpoints for accessing internet and local applications. This makes it the most common vector for highly evasive attacks such as phishing, malware and other malicious content and files. In addition, the browser is also a source of data loss of sensitive information through copy-and-paste of content to file formats, physical printing, or by unintentionally screen sharing during remote meetings.

    FortiSASE Secure Browser through a browser extension for supported web browsers including Google Chrome and Microsoft Edge can mitigate client-side threats on endpoints themselves and complement the protection already provided by steering web traffic to FortiSASE using agent and agentless solutions.

    This feature is a select availability feature in FortiSASE that is not enabled by default on new instances. If you require this feature for your new or existing FortiSASE instance, create a new ticket with FortiCare Support.

    Prerequisites

    See Secure Browser.

    Considerations

    • Currently, the Display watermark website display option is not applied when saving a local copy of a website.

    • Currently, the Pasting text copied from specified websites option for URL domain group overrides is not applied for websites including AI applications containing code blocks with an inline copy button.

    • In private browsing mode, browser extensions are disabled by default and must be enabled by the end user. For most deployments, it is highly recommended to disable private browsing mode (Incognito mode in Google Chrome and InPrivate mode in Microsoft Edge) in web browsers on all devices.

    • IdP attribute mapping is important for user assignment rules, used to match the contents of attributes to assign secure browser profiles to specific users or groups of users. Email is a required attribute for Secure Browser user assignment rules.

    See Secure Browser.

    Previous
    Next