統一端點代理程式
FortiClient 是一個提供可視性、控制、ZTNA、安全遠端存取和端點防護 的 Fortinet Fabric 代理程式
免費產品展示 產品下載
概述
FortiClient 是一個 Fabric 代理程式,可在單個模組化的輕量型用戶端中提供保護、法規遵循和安全存取。Fabric 代理程式是一種端點軟體,可在筆記型電腦或行動裝置等端點上執行,並與 Fortinet 安全織網 通訊,為該裝置提供資訊、可視性和控制。
安全存取
統一的 FortiClient 代理使遠端工作人員能夠使用零信任原則安全地連接到網路。此版本支援通用 ZTNA 和 VPN 加密通道,以及 URL 過濾和雲端存取安全代理 (CASB)。FortiSASE 提供雲端託管通用 ZTNA、雲端存取安全代理 (CASB) 和 SWG,並包括統一的 FortiClient 代理。包括透過 FortiClient EMS 進行中央管理。
端點防護
統一的 FortiClient 透過新增基於 AI 的新世代防毒軟體 (NGAV)、端點隔離和應用服務防火牆,以及對雲端智能沙箱、USB 裝置控制和勒索軟體防護,提升安全功能。
融合防護力以阻擋進階威脅
FortiEndpoint 將安全連線、端點防護以及端點偵測與回應 (EDR) 和延伸偵測與回應 (XDR) 等進階功能整合於單一代理程式中。簡化了管理流程並提升可視性,同時降低成本與複雜性。此解決方案為 IT 團隊提供所需的可視性與控制力,同時安全團隊可從自動化的威脅偵測與回應受益。這可最大程度地減少人工干預的需求,並確保在所有環境中更快地修復威脅。
託管端點安全服務
為簡化初始部署和卸載持續監控,Fortinet 提供了以端點為中心的託管服務,可實現 FortiClient 解決方案的全面運作,並提供設定、部署、組態、漏洞監控和整體端點安全監控。
功能與優點
FortiClient 使用案例
端點可視性和法規遵循控制
確保整個安全織網的端點可視性和法規遵循,並將端點和網路安全與自動化整合在一起。
安全遠端存取(VPN、ZTNA)
包括支援態勢檢查、有條件加入以及使用者和裝置持續驗證的永遠在線的加密通道。
端點強化
透過自動修補、軟體清單和應用服務防火牆實現漏洞掃描,提高整體安全。
進階端點防護 (Advanced Endpoint Protection)
採用機器學習惡意軟體防護與基於行為的漏洞防護來保護端點。應用服務防火牆與網頁內容過濾可提供額外的保護。
智能沙箱整合
與 FortiSandbox 的原生整合,且可阻止未曾見過的檔案執行。自動提交此類檔案以進行即時分析。
角色導向存取控制
使用 Active Directory 中的資訊,支援 FortiGate 在網路中實施 RBAC 政策。
FortiClient 獲 Chrome Enterprise 推薦
為企業提供安全、最佳化的工具,可與 ChromeOS 和 Google Workspace 順暢整合,簡化管理並提高生產力。
FortiGuard AI 驅動安全服務
FortiGuard Labs 是 Fortinet 的精英網路安全威脅情資和研究機構,由經驗豐富的威脅獵人、研究人員、分析師、工程師和資料科學家組成,其目的在於開發和增強 FortiGuard AI 驅動的安全服務,並透過 FortiGuard 專家驅動的安全服務提供有價值的專家協助。
查看所有服務
Content Security
Web Security
Device Security
Application Security
SOC NOC 安全
FortiGuard AI-based Inline Malware Prevention Service
Performs AI-powered real-time inspection of files for protection against unknown threats, zero-days, and sophisticated file-based attacks.
FortiGuard URL 過濾服務
使用 AI 驅動的行為分析和關聯性,幾乎可以立即攔截未知的惡意 URL,誤報接近零。
IP 聲譽評等 & 預防殭屍網路安全服務
從 Fortinet 分散式威脅感測器網路、CERT、MITRE 等來源彙集惡意來源 IP 資料,合力提供最新威脅情報。
FortiGuard 防毒服務
防範最新的多態攻擊、病毒、惡意軟體(包括勒索軟體)以及其他威脅。
案例研究
Village of Pleasant Prairie
Village of Pleasant Prairie Achieves Granular, Unified Security with the Fortinet Security Fabric
Best Value Chem (BVC)
Fragrance Manufacturer Converges IT and OT Security with the Fortinet Security Fabric
Wake Community College
Building a Modern Network for North Carolina’s Largest Community College with the Fortinet Security Fabric
City of Green Bay
From Patchwork to Partnership: Green Bay Strengthens Security with Fortinet
▼
Gartner Peer Reviews
We’re proud to be recognized as a 2026 Gartner Peer Insights™ Customers’ Choice for Endpoint Protection Platforms for the fourth year in a row (2023-2026). With a 4.8 out of 5-star rating and an exceptional 98% willingness to recommend, this recognition reflects the trust customers place in Fortinet’s unified endpoint security platform.
Centralized Management and Consolidation Simplify Security and Monitoring Tasks
Fortinet's products are some of the best in the world and provide everything we need whilst also being enjoyable to work with. The consolidation of products with a single vendor brings many security, monitoring and management benefits.
Endpoint Security Delivers Reliable Protection Without Noticeable Performance Impact
Solution is very reliable. Solution provides very effective endpoint security protection. Overall experience with Fortinet's endpoint security solution is positive
Solution Strengthens Threat Defence and Management With Unified Zero-Trust Agent
Overall solution helped us in achieving stronger threat defence along with ease of management & deployment.
Comprehensive Security Agent Offers Lightweight Protection and Virtual Patching Features
Single agent with multiple AI based security features along with ZTNA capability which is also light weight provides complete security with great user experience.
Gartner Peer Reviews
At Fortinet, our top priority is always our customers. We're proud to be the only vendor to be named 2025 Gartner Peer Insights™ Customers’ Choice for Zero Trust Network Access (ZTNA). 97% of Fortinet reviewers are willing to recommend Fortinet, with a rating of 4.9 out of 5 based on 235 customer reviews over the 18-month review period ending December 31, 2024.
Secure and Consistent Access with Universal ZTNA: A Story of Success
It has been an amazing experience with Fortinet's Universal ZTNA. We have been using this product for the last 2-3 years, and the journey has been good so far. We have not faced any outages, and user connectivity is seamless. Fortinet Universal ZTNA ensures consistent security for all users, whether they are on-premises or roaming, by pushing the same policy throughout the organization.
Fortinet Universal ZTNA: A Securing Device for Local and Remote Users
I've been using Fortinet Universal ZTNA, and it's great for network security. It protects both remote and local users, ensuring only authorized access. Easy integration with other Fortinet products makes management a breeze. Setup is straightforward, and the intuitive interface makes it user-friendly. I highly recommend it for a robust, zero-trust security solution.
Secure Access to Private Applications and Web Services Unveiled
The solution provides secure access to private applications, the Internet & web, and cloud services regardless of the user's location. It's a cloud-delivered solution and, hence, can support any number of growing user counts. We have an excellent overall experience.
Fortinet's Universal ZTNA is best product for Remote User Accessibility
On-going verification of users and devices is the best feature of Fortinet ZTNA; with this feature, once the user is connected, Fortinet ZTNA will keep on checking the user's posture during the session. Also, it has a variety of ZTNA tags (posture checks) which can be applied to the ZTNA profile, and based on that, end user posture is checked, for example, domain check, Anti-virus check, and many more.
Fortinet Universal ZTNA is best product for security...
Fortinet Universal ZTNA is giving us secure access to our applications; with this product, only our organization's trusted users can connect to our office network. Whenever any user connects, it checks the user & device posture. Once the Posture check is successful, it only allows connecting to the applications.
Fortinet has the best Universal ZTNA solution for remote work
Fortinet Universal ZTNA is a reliable product; we are using this to check the posture of remote users. This has been working great in our environment for the last 3 years. Users and laptops that are compliant with the ZTNA tags are getting connected to our applications, which are placed in datacenter, and the rest are getting blocked if their ZTNA compliance does not meet our organization policy.
Fortinet's Universal ZTNA Platform: An Efficient Strategic Adoption
Fortinet Universal ZTNA platform helped us adopt zero trust strategically in our environment. We use FortiEMS along with FortiAuthenticator and FortiToken, which works very well as a platform approach by integrating with FortiGate to enable ZTNA functionality to enable secure access to our applications.
Exploring the Impressive 'Always On VPN' Feature of Fortinet ZTNA
Outstanding experience working on the Fortinet ZTNA; with this ZTNA solution, we are very relaxed from a security point of view for Remote users because of this product, only trusted users can connect to our applications, which are hosted in our data center. User feedback is also very positive, and they never faced any slowness or disconnections on ZTNA.
Fortinet Universal ZTNA: Seamless Security Integration
My overall experience with Fortinet Universal ZTNA has been excellent; the solution provides robust security features, seamless integration with our existing infrastructure, and a user-friendly interface, ensuring comprehensive protection and efficient management. FortiClient ZTNA has been the perfect solution for our growing organization. The Centralized Management Dashboard allows us to easily monitor and control user access and keep our data safe and secure.
型號與規格
FortiClient 提供多種功能等級,增加了保護級別。它與 Fortinet 安全織網的許多關鍵元件整合,並由端點管理伺服器 (EMS) 集中式管理。
如需更多資訊,請參閱產品 資料表 。
▼
功能包括:
| 採用多重要素認證 (MFA) 的零信任代理程式 | 零信任代理支援 ZTNA 通道、單一登入 (SSO) 和 FortiOS 存取代理的裝置狀態檢查 |
| 透過 EMS 或 FortiClient Cloud 進行中央管理 | 集中式 FortiClient 部署和佈建,允許管理員遠端部署端點軟體並執行受控升級。一鍵輕鬆將 FortiClient 設定部署到數千個客戶端。 漏洞儀表板有助於管理組織的攻擊面。輕鬆識別所有易受攻擊的端點,以便採取管理行動。 Windows AD 整合有助於將組織的 AD 結構與 EMS 同步,因此可使用相同的組織單位 (OU) 進行端點管理。即時端點狀態始終提供有關端點活動和安全事件的最新資訊。 |
| 集中記錄和報告 | 集中記錄簡化了 FortiSIEM 或其他 SIEM 產品的法規遵循報告與資安分析 |
| 動態安全織網 Fabric 連接器 | EMS 會根據端點安全性狀態建立虛擬群組。這些虛擬群組隨後由 FortiGate 擷取,並用於防火牆原則中,以進行動態存取控制。動態群組可協助自動化並簡化資安原則的法規遵循。 |
| 漏洞代理程式與修復 | 漏洞代理程式與修復可確保端點安全並強化端點以減少攻擊面。這能識別易受攻擊的端點,並利用包括自動修補在內的靈活修補選項,優先處理未修補的作業系統和軟體漏洞。 |
| 遠端存取 VPN | 具有 MFA 的遠端存取 VPN 啟用了易於使用的加密通道,可提供最高的 VPN 吞吐量。 |
| FortiGuard 網頁過濾 | 網頁過濾功能由 FortiGuard Labs 研究提供技術支援,可監控所有網頁瀏覽器活動,以執行超過 75 類的網路安全和可接受的使用原則。它適用於所有支援的作業系統,可與 Google SafeSearch 搭配使用。可以從 FortiGate 同步端點網頁過濾設定檔,實現一致的原則實施。管理員可以設定黑/白名單、網內/網外原則,以及匯入 FortiGate 網頁過濾原則,以實現一致的實施。 FortiClient 現在支援網頁過濾器外掛程式,可改善對具有加密流量的 HTTPS 網站上的網頁過濾器規則的偵測和實施。 |
| 分流通道 | 支援 ZTNA 和 VPN 通道,分流通道可實現最佳化的使用者體驗 |
| 單一登入 (SSO) | SSO 與 FortiAuthenticator 身分和存取管理整合,以提供單一登入。 |
| ZTNA 版本功能 | 此版本包含 ZTNA 版本的所有功能,以及下列項目: |
|---|---|
| AI 驅動的新一代防毒 (NGAV) | 反惡意軟體利用 FortiGuard 內容模式辨識語言 (CPRL)、機器學習和 AI 保護端點免受惡意軟體攻擊。模式型 CPRL 在偵測和阻止多態惡意軟體方面非常有效。它還可以阻斷攻擊通道和惡意網站。 |
| FortiClient Cloud Sandbox | FortiClient 與 FortiSandbox 原生整合。FortiClient 會自動向連接的 FortiSandbox 提交檔案以進行即時分析。沙箱分析結果會自動與 EMS 同步。管理員可以查看已提交物件的詳細資訊和行為活動,包括完整流程樹的圖形可視化。 |
| 自動化端點隔離 | 受到安全事件觸發時,自動化端點隔離會自動執行策略型回應。例如,它可以自動隔離可疑或遭入侵的端點,以遏制事件並防止爆發。 |
| 應用服務防火牆 | 應用服務防火牆能夠按類別監控、允許或阻止應用程式流量。它使用與 FortiGate 相同的類別,實現一致的應用程式流量控制。它利用 FortiGuard 的反殭屍網路、IPS 和應用服務控制情報,可以防止使用不需要的應用程式,包括代理應用程式和 HTTPS 訊息應用程式。 |
| 應用程式清單 | 應用程式清單提供對已安裝軟體的可視性。除了管理授權外,軟體清單還能改善安全衛生。如果出於業務目的不需要安裝軟體,則會不必要地引入潛在的漏洞,導致提高入侵的可能性。 管理員可以利用清單資訊來偵測並移除可能易受攻擊的不必要或過時應用程式,進而減少攻擊面。 |
| USB 裝置控制 | 此功能可防止未經授權的 USB 裝置存取主機。 |
學校在課程中繼續增強其技術,並且採用 Chromebook 等個人裝置越來越普遍。學區必須遵守兒童網際網路保護法 (CIPA),並保護學生在瀏覽網際網路時免受有害內容的侵害。
園區內外一致的網頁過濾策略實施
網頁過濾功能由 FortiGuard Labs 研究提供技術支援,可監控所有網頁瀏覽器活動,以執行超過 75 類的網路安全和可接受的使用原則。它也支援 Google SafeSearch。
- 支援 K-12 在園區內外的安全瀏覽。不需要反向代理或 VPN
- 可分類超過 4,300 萬個評分網站和超過 20 億個網頁
- 符合 FortiGate 上的網頁過濾策略
- 與 Google SafeSearch 搭配使用,並支援自訂拒絕/核准清單
- 監控所有網頁瀏覽器活動,包括 HTTPS
輕鬆部署,簡單易用
- 與 Google G Suite 管理主控台整合,方便管理
- 從 G Suite 管理主控台和 Google Chrome Web Store 部署。它允許管理員管理 Chromebooks 上的應用程式和擴充功能,使其成為可擴展的流程。使用 Google 憑證啟用單一登入,而無需額外的網頁驗證入口登入。
靈活的詳細記錄和報告
- 識別登入 Chromebook 的學生,並套用與年級相應的適當策略。
- 支援「購物車系統」,其中裝置不會專門分配給一個使用者。
| Windows | macOS | Android | iOS | Chromebook | Linux | |
|---|---|---|---|---|---|---|
| 零信任安全 | ||||||
| 端點遙測 | ✔ | ✔ | ✔ | ✔ | ✔ | ✔ |
| 使用動態存取控制的強制性法規遵循 | ✔ | ✔ | ✔ | ✔ | ✔ | |
| 透過漏洞掃描進行端點稽核與補救 | ✔ | ✔ | ✔ | |||
| 遠端記錄和報告 | ✔ | ✔ | ✔ | ✔ | ✔ | |
| 遠端存取 VPN | ✔ | ✔ | ✔ | ✔ | ✔ | |
| ZTNA 遠端存取 | ✔ | ✔ | ✔ | ✔ | ✔ | |
| Windows AD SSO 代理程式 | ✔ | ✔ | ||||
| USB 裝置控制 | ✔ | ✔ | ✔ | |||
| 端點安全 | ||||||
| 防毒 | ✔ | ✔ | ✔ | |||
| 雲端型的威脅偵測 | ✔ | ✔ | ||||
| 沙箱(內部) | ✔ | ✔ | ✔ | |||
| 沙箱(雲端) | ✔ | ✔ | ||||
| 自動化端點隔離 | ✔ | ✔ | ||||
| 網頁過濾器 | ✔ | ✔ | ✔ | ✔ | ✔ | |
| 反漏洞利用 | ✔ | |||||
| 應用服務防火牆 | ✔ | ✔ | ||||
| VPN/ZTNA | EPP/APT | 託管 | |
|---|---|---|---|
| 零信任代理 | |||
| 零信任網路存取 (ZTNA) | ✔ | ✔ | ✔ |
| 使用 FortiClient Cloud 進行中央管理 | ✔ | ✔ | ✔ |
| 集中記錄和報告 | ✔ | ✔ | ✔ |
| 遠端存取 VPN | ✔ | ✔ | ✔ |
| SSO 行動代理程式 | ✔ | ✔ | ✔ |
| 雲端存取安全代理 (CASB)(內聯和 API) | ✔ | ✔ | ✔ |
| IT 衛生 | |||
| 漏洞代理程式與修復 | ✔ | ✔ | ✔ |
| FortiGuard 網頁過濾 | ✔ | ✔ | ✔ |
| USB 裝置控制 | ✔ | ✔ | |
| 端點安全 (EPP) | |||
| FortiSandbox(內部或 PaaS) | ✔ | ✔ | |
| FortiClient Cloud Sandbox | ✔ | ✔ | |
| AI 驅動的 NGAV | ✔ | ✔ | |
| 自動化端點隔離 | ✔ | ✔ | |
| 勒索軟體防護 | ✔ | ✔ | |
| 託管 FortiClient 服務 | |||
| 端點接入 | ✔ | ||
| 初始配置 | ✔ | ||
| 安全織網設定/整合 | ✔ | ||
| 漏洞監控 | ✔ | ||
| 端點安全監控 | ✔ | ||
| 其他服務 | |||
| 最佳實踐服務 (BPS) 諮詢 | 帳戶附加元件 | 帳戶附加元件 | 不適用 |
| 取證分析服務 (FAS) | 帳戶附加元件 | 帳戶附加元件 | 帳戶附加元件 |
| 全天候支援 | ✔ | ✔ | ✔ |
| 內部/氣隙選項 | ✔ | ✔ | |
FortiClient 專業服務
Fortinet 提供了專門針對 FortiClient 的專業服務。這些服務可幫助您充分利用 FortiClient 解決方案,協助進行基本設定以及最佳化競爭解決方案。
FortiClient 最佳做法服務 (BPS)
此服務提供了部署、升級和營運方面的指導。BPS 團隊將透過電話或電子郵件提供建議,但不會直接設定或管理產品。
此服務提供分析,以協助您回應網路事件並從中復原。取證分析人員將協助收集、檢查和演示數位證據。
FortiClient 託管服務
此服務簡化了透過 FortiClient Cloud 託管的 FortiClient 代理程式的設定、部署和持續監控。
資源
資料表
電子書
分析報告
參考架構
解決方案簡介
網路研討會
白皮書
FortiClient Ordering Guide »
FortiClient Ordering Guide
FortiClient Data Sheet »
FortiClient Datasheet
FortiClient Managed Services »
Take advantage of FortiClient Managed Services to design, configure, streamline and help deploy your remote access and endpoint protection software.
FortiClient Forensic Service Data Sheet »
FortiClient Forensic Service Datasheet
Fortinet Product Matrix »
Fortinet Product Matrix
Beyond Remote Access: Secure and Simplify Application Access from Anywhere with Universal ZTNA »
Discover how ZTNA can simplify access management, improve security, and lower latency.
Modernize Secure Access with Universal ZTNA and Endpoint Protection »
Learn how to improve your security posture with universal ZTNA and endpoint protection.
FortiClient Fights Agent Sprawl with Unmatched Coverage »
Learn about the agent that has it all: FortiClient.
生態系統
FortiClient 作為 Fortinet 安全織網的一部分,提供了與眾多領先 IT 供應商的整合。以下是目前 FortiClient 聯盟夥伴清單:
AppNeta
AppNeta Performance Manager is the only network performance monitoring platform that delivers actionable, end-to-end insights from the end-user perspective. Together with Fortinet, AppNeta's SaaS-based solution enables IT to baseline performance before rollout, demonstrate achievable value during pilot-phase testing, and continuously validate end-to-end network performance.
CrowdStrike, Inc.
CrowdStrike has redefined security with the world’s most advanced cloud-native platform for protecting critical areas of enterprise risk — endpoints and cloud workloads, identity, and data.
D3 Security
D3 Security's award-winning SOAR platform seamlessly combines security orchestration, automation and response with enterprise-grade investigation/case management, trend reporting and analytics. With D3's adaptable playbooks and scalable architecture, security teams can automate SOC use-cases to reduce MTTR by over 95%, and manage the full lifecycle of any incident or investigation.
DefendEdge
DefendEdge’s SiON, an Employee Threat Management platform, delivers machine learning intelligence to empower customers with enhanced protection against advanced persistent threats in today’s ever-evolving cybersecurity landscape. Together with Fortinet’s Security Fabric, SiON can detect, prevent, respond, and predict end user anomalous or malicious activities.
Idaptive
Together with Fortinet, Idaptive delivers Next-Gen Access through a zero trust approach. Idaptive secures access everywhere by verifying every user, validating their devices, and intelligently limiting their access.
InfoBlox
Infoblox is leading the way to next-level DDI with its Secure Cloud-Managed Network Services. Infoblox brings next-level security, reliability and automation to cloud and hybrid systems, setting customers on a path to a single pane of glass for network management. Infoblox is a recognized leader with 50 percent market share comprised of 8,000 customers, including 350 of the Fortune 500.
METTCARE
METTCARE leads with a unified and secure digital identity engine, making edge-to-cloud computing impenetrable to intruders. Cybersecurity and privacy are built into the fabric of METTCARE and Fortinet digital transformation with device-IoT-user authentication, business intelligence and risk mitigation. Cyber-resilient organizations depend on METTCARE intelligent-data access, consented-data management and quantum-ready data storage.
培訓與認證
網路安全專家 (NSE) 培訓課程提供了有關產品領域或解決方案的深入技術培訓。FortiClient 的相關培訓如下:
Fortinet 認證專業人員 - 網路安全
In this course, you will learn how to use the FortiClient EMS feature, provision FortiClient endpoints, FortiClient EMS Security Fabric integration, explore different editions of FortiClient, and deploy and configure ZTNA agent and endpoint security features.
其他訓練
Learn how to protect your organization and improve its security against advanced threats that bypass traditional security controls. You will also learn how other advanced threat protection (ATP) components—FortiGate, FortiMail, FortiWeb, and FortiClient—leverage this threat intelligence information to protect organizations from advanced threats.
