Fortinet black logo

User Guide

Home FortiWeb Cloud User Guide

Subscriptions and Contracts

Subscriptions and Contracts

If your application is deployed on AWS, we will select a FortiWeb Cloud scrubbing center that is also hosted on AWS, regardless of where you have subscribed to FortiWeb Cloud. This ensures optimal performance, minimizing network latency and providing a seamless experience for securing your application.

The subscription platform primarily serves billing purposes, enabling you to pay for the traffic processed by FortiWeb Cloud. It takes care of the financial aspects related to the FortiWeb Cloud service.

We have updated our FortiWeb Cloud PAYG listing on Azure to include the Vulnerability Scan service. To change your old plan to the new one, you must unsubscribe from your current plan and then re-subscribe to the new plan within 7 days of unsubscribing.

Your existing applications and resources are attached to the account, not the subscription. When you unsubscribe from your plan, your onboarded applications will continue to function normally, but with reduced UI access in "read-only" mode. FortiWeb Cloud will continue to protect your applications during this period.

After successfully subscribing to the new plan, your UI access will be fully restored to "read/write," allowing you to resume your work without any interruptions.
  • For subscriptions on AWS, Azure, and Google Cloud: You can unsubscribe from FortiWeb Cloud anytime, while the data in your FortiWeb Cloud account will be kept for an additional week.
  • For FortiWeb Cloud contract: After the contract expires, FortiWeb Cloud continues protecting your applications for 21 days. During this period, you are not allowed to edit configuration for your applications unless the contract is renewed.
    After the 21-day extension, your applications will be deleted from your FortiWeb Cloud account.

After you unsubscribe from FortiWeb Cloud, remember to replace CNAME with the right IP address in the DNS record so your web application does not experience service interruption.

Please note that the Vulnerability Scan feature follows a different billing structure; for more information, please look under vulnerability scan.

After your contracts expire, FortiWeb Cloud initiates a grace period, during which you have read-only access to all of your applications until the contracts are renewed.

For public cloud subscription customers, this grace period is 7 days. For all other customers, this grace period is 21 days.

Once the grace period ends, all of your applications will be deleted from FortiWeb Cloud.

No. Due to security and privacy considerations, FortiWeb Cloud does not retain any customer configurations once the application has been deleted.

However, several days before the licenses become invalid, you should receive a warning email specifying the expiration date of the licenses. During this period, you have the option to extend the licenses if you intend to continue using the service.

The data for this application will be deleted and can't be restored.

After your contracts expire, FortiWeb Cloud initiates a grace period, during which you have read-only access to all of your applications until the contracts are renewed.

For public cloud subscription customers, this grace period is 7 days. For all other customers, this grace period is 21 days.

Once the grace period ends, all of your applications will be deleted from FortiWeb Cloud. Make sure to keep at least one valid contract to avoid activating this grace period.

You can contact the FortiWeb Cloud Team for help with migrating applications between accounts. In your inquiry, please include account details for both accounts, including the Serial Number and associated email for each account, along with platform information (e.g., AWS, Azure, GCP). For additional guidance on how to contact our Customer Service, please refer to the Contacting Customer Service section.

When an account has onboarded more applications than their contract allows, FortiWeb Cloud will immediately lock the UI and move it to read-only. Customers will not be able to make any changes until additional contracts are purchased.

For example: A customer purchases two contracts; the first one is purchased on January 1 for a single web application. On April 1, the customer purchases another contract for five more applications. On January 1 of the next year, the first contract for the single web app expires leaving the customer with a 5 web app contract. The customer now has 6 applications onboarded while the license only allows 5 applications. The customer will have read-only access for all of their applications until they purchase another contract.

When a customer uses more bandwidth than their contract allows (bandwidth usage is measured monthly at the 95th percentile), FortiWeb Cloud triggers an internal notification. However, it does not block nor throttle access to customer applications. The account team will contact affected customers and inform them of the need to purchase new contracts immediately. Currently, as of February 2023, this notification process is manual. However, we are working on automating it, and in the future, restrictions like those mentioned above will be deployed automatically when there are bandwidth contract violations.

Fortiweb Cloud WAF is primarily focused on protecting web applications from various security threats and does not validate or manage server certificates.

The WAF processes the request as if it were in transparent mode, potentially allowing the user to reach the backend server.
Previous
Next

Subscriptions and Contracts

If your application is deployed on AWS, we will select a FortiWeb Cloud scrubbing center that is also hosted on AWS, regardless of where you have subscribed to FortiWeb Cloud. This ensures optimal performance, minimizing network latency and providing a seamless experience for securing your application.

The subscription platform primarily serves billing purposes, enabling you to pay for the traffic processed by FortiWeb Cloud. It takes care of the financial aspects related to the FortiWeb Cloud service.

We have updated our FortiWeb Cloud PAYG listing on Azure to include the Vulnerability Scan service. To change your old plan to the new one, you must unsubscribe from your current plan and then re-subscribe to the new plan within 7 days of unsubscribing.

Your existing applications and resources are attached to the account, not the subscription. When you unsubscribe from your plan, your onboarded applications will continue to function normally, but with reduced UI access in "read-only" mode. FortiWeb Cloud will continue to protect your applications during this period.

After successfully subscribing to the new plan, your UI access will be fully restored to "read/write," allowing you to resume your work without any interruptions.
  • For subscriptions on AWS, Azure, and Google Cloud: You can unsubscribe from FortiWeb Cloud anytime, while the data in your FortiWeb Cloud account will be kept for an additional week.
  • For FortiWeb Cloud contract: After the contract expires, FortiWeb Cloud continues protecting your applications for 21 days. During this period, you are not allowed to edit configuration for your applications unless the contract is renewed.
    After the 21-day extension, your applications will be deleted from your FortiWeb Cloud account.

After you unsubscribe from FortiWeb Cloud, remember to replace CNAME with the right IP address in the DNS record so your web application does not experience service interruption.

Please note that the Vulnerability Scan feature follows a different billing structure; for more information, please look under vulnerability scan.

After your contracts expire, FortiWeb Cloud initiates a grace period, during which you have read-only access to all of your applications until the contracts are renewed.

For public cloud subscription customers, this grace period is 7 days. For all other customers, this grace period is 21 days.

Once the grace period ends, all of your applications will be deleted from FortiWeb Cloud.

No. Due to security and privacy considerations, FortiWeb Cloud does not retain any customer configurations once the application has been deleted.

However, several days before the licenses become invalid, you should receive a warning email specifying the expiration date of the licenses. During this period, you have the option to extend the licenses if you intend to continue using the service.

The data for this application will be deleted and can't be restored.

After your contracts expire, FortiWeb Cloud initiates a grace period, during which you have read-only access to all of your applications until the contracts are renewed.

For public cloud subscription customers, this grace period is 7 days. For all other customers, this grace period is 21 days.

Once the grace period ends, all of your applications will be deleted from FortiWeb Cloud. Make sure to keep at least one valid contract to avoid activating this grace period.

You can contact the FortiWeb Cloud Team for help with migrating applications between accounts. In your inquiry, please include account details for both accounts, including the Serial Number and associated email for each account, along with platform information (e.g., AWS, Azure, GCP). For additional guidance on how to contact our Customer Service, please refer to the Contacting Customer Service section.

When an account has onboarded more applications than their contract allows, FortiWeb Cloud will immediately lock the UI and move it to read-only. Customers will not be able to make any changes until additional contracts are purchased.

For example: A customer purchases two contracts; the first one is purchased on January 1 for a single web application. On April 1, the customer purchases another contract for five more applications. On January 1 of the next year, the first contract for the single web app expires leaving the customer with a 5 web app contract. The customer now has 6 applications onboarded while the license only allows 5 applications. The customer will have read-only access for all of their applications until they purchase another contract.

When a customer uses more bandwidth than their contract allows (bandwidth usage is measured monthly at the 95th percentile), FortiWeb Cloud triggers an internal notification. However, it does not block nor throttle access to customer applications. The account team will contact affected customers and inform them of the need to purchase new contracts immediately. Currently, as of February 2023, this notification process is manual. However, we are working on automating it, and in the future, restrictions like those mentioned above will be deployed automatically when there are bandwidth contract violations.

Fortiweb Cloud WAF is primarily focused on protecting web applications from various security threats and does not validate or manage server certificates.

The WAF processes the request as if it were in transparent mode, potentially allowing the user to reach the backend server.
Previous
Next