{"id":11241,"date":"2024-06-29T13:59:05","date_gmt":"2024-06-29T06:59:05","guid":{"rendered":"https:\/\/serverhot.vn\/product\/uncategorized\/endpoint-based-licenses-epp-atp-on-premise-deployments-1-year-forticlient-epp-atp-subscription-for-25-endpoint-ma-san-pham-fc1-10-ems04-429-01-12\/"},"modified":"2024-06-29T13:59:09","modified_gmt":"2024-06-29T06:59:09","slug":"endpoint-based-licenses-epp-atp-on-premise-deployments-1-year-forticlient-epp-atp-subscription-for-25-endpoint-ma-san-pham-fc1-10-ems04-429-01-12","status":"publish","type":"product","link":"https:\/\/serverhot.vn\/ar\/-product-\/endpoint-based-licenses-epp-atp-on-premise-deployments-1-year-forticlient-epp-atp-subscription-for-25-endpoint-ma-san-pham-fc1-10-ems04-429-01-12\/","title":{"rendered":"Endpoint-based Licenses &#8211; EPP\/ATP (On Premise Deployments) 1 Year FortiClient EPP\/ATP Subscription for 25 endpoint M\u00e3 s\u1ea3n ph\u1ea9m: FC1-10-EMS04-429-01-12"},"content":{"rendered":"<div class=\"showText tabs\" id=\"tab2\">\n<div class=\"box_right_pro_view\">\n<div class=\"thongso_pro a_technical\" style=\"max-height: fit-content\">\n<p><span>Zero Trust Network Access (ZTNA) l\u00e0 xu th\u1ebf b\u1ea3o m\u1eadt ng\u00e0y c\u00e0ng \u0111\u01b0\u1ee3c nhi\u1ec1u t\u1ed5 ch\u1ee9c quan t\u00e2m do t\u00ednh linh ho\u1ea1t, hi\u1ec7u qu\u1ea3, v\u00e0 tin c\u1eady. ZTNA lo\u1ea1i b\u1ecf kh\u00e1i ni\u1ec7m trusted, m\u1ecdi ng\u01b0\u1eddi d\u00f9ng, thi\u1ebft b\u1ecb\u2026 mu\u1ed1n k\u1ebft n\u1ed1i truy c\u1eadp, s\u1eed d\u1ee5ng d\u1eef li\u1ec7u \u1ee9ng d\u1ee5ng \u0111\u1ec1u c\u1ea7n ph\u1ea3i \u0111\u01b0\u1ee3c x\u00e1c nh\u1eadn th\u00f4ng tin danh t\u00ednh, ph\u00e2n lo\u1ea1i, ph\u00e2n quy\u1ec1n truy c\u1eadp t\u1edbi nh\u1eefng t\u00e0i nguy\u00ean nh\u1ea5t \u0111\u1ecbnh.<\/span><\/p>\n<p><span>Theo t\u00e0i li\u1ec7u \u0111\u01b0\u1ee3c nghi\u00ean c\u1ee9u v\u00e0 cung c\u1ea5p t\u1eeb c\u00e1c t\u1ed5 ch\u1ee9c NIST SP 800-207 Zero Trust Access, Forrester Zero Trust Adge, Gartner Secure Access Service Edge, c\u00f4ng ngh\u1ec7 ZTNA \u0111\u01b0\u1ee3c ph\u00e2n lo\u1ea1i th\u00e0nh 3 ki\u1ebfn tr\u00fac sau:<\/span><\/p>\n<ul>\n<li><span>Remote Access\/Work From Anywhere: qu\u1ea3n l\u00fd vi\u1ec7c thi\u1ebft l\u1eadp Secure Tunnel, Access-Proxy v\u00e0 ki\u1ec3m so\u00e1t vi\u1ec7c truy xu\u1ea5t t\u00e0i nguy\u00ean, \u1ee9ng d\u1ee5ng ng\u01b0\u1eddi d\u00f9ng.<\/span><\/li>\n<li><span>Network Segmentation: qu\u1ea3n l\u00fd, ph\u00e2n quy\u1ec1n truy c\u1eadp t\u1edbi c\u00e1c ph\u00e2n \u0111o\u1ea1n m\u1ea1ng ho\u1eb7c gi\u1eefa c\u00e1c ph\u00e2n \u0111o\u1ea1n m\u1ea1ng.<\/span><\/li>\n<li><span>Micro-segmentation: qu\u1ea3n l\u00fd east-west traffic \u0111\u01b0\u1ee3c truy\u1ec1n t\u1ea3i trong c\u00f9ng m\u1ed9t ph\u00e2n \u0111o\u1ea1n m\u1ea1ng, application workload trong data-center ho\u1eb7c cloud.<\/span><\/li>\n<\/ul>\n<figure class=\"wp-block-image size-large is-resized\"><span><img decoding=\"async\" class=\"wp-image-6446\" src=\"http:\/\/serverhot.vn\/wp-content\/uploads\/2024\/06\/1-13.png\" width=\"562\" height=\"229\" loading=\"lazy\" title=\"1-13\"><\/span><\/figure>\n<p><span><strong>Fortinet ZTNA<\/strong>\u00a0l\u00e0 gi\u1ea3i ph\u00e1p b\u1ea3o m\u1eadt t\u00edch h\u1ee3p \u0111\u01b0\u1ee3c cung c\u1ea5p free tr\u00ean n\u1ec1n t\u1ea3ng FortiOS 7.0 v\u00e0 \u0111\u01b0\u1ee3c ho\u00e0n thi\u1ec7n t\u1eeb version 7.2 k\u1ebft h\u1ee3p v\u1edbi EMS cung c\u1ea5p kh\u1ea3 n\u0103ng qu\u1ea3n l\u00fd, x\u00e1c th\u1ef1c, \u0111\u1ed3ng b\u1ed9 th\u00f4ng tin li\u00ean t\u1ee5c v\u1edbi Endpoint th\u00f4ng qua b\u1ed9 c\u00f4ng c\u1ee5 FortiClient \u0111\u01b0\u1ee3c c\u00e0i \u0111\u1eb7t tr\u00ean \u0111a n\u1ec1n t\u1ea3ng bao g\u1ed3m: Windows, MacOS, Linux, IOS v\u00e0 Android.<\/span><\/p>\n<p><span>D\u1ef1a v\u00e0o ki\u1ebfn tr\u00fac c\u1ee7a t\u1eebng platform, FortiClient cung c\u1ea5p nh\u1eefng t\u00ednh n\u0103ng sau:<\/span><\/p>\n<figure class=\"wp-block-image size-large is-resized\"><span><img decoding=\"async\" class=\"wp-image-6447\" src=\"http:\/\/serverhot.vn\/wp-content\/uploads\/2024\/06\/1-14.png\" width=\"539\" height=\"464\" loading=\"lazy\" title=\"1-14\"><\/span><\/figure>\n<p class=\"has-medium-font-size\"><span><strong>Ti\u1ebfn tr\u00ecnh thi\u1ebft l\u1eadp ZTNA<\/strong><\/span><\/p>\n<ol type=\"1\">\n<li><span>ZTNA Telemetry:<\/span>\n<ul>\n<li><span>FortiClient t\u1ef1 \u0111\u1ed9ng t\u00ecm ki\u1ebfm EMS v\u00e0 chia s\u1ebb c\u00e1c th\u00f4ng tin v\u1ec1 thi\u1ebft b\u1ecb \u0111ang \u0111\u01b0\u1ee3c c\u00e0i \u0111\u1eb7t bao g\u1ed3m th\u00f4ng tin nh\u1eadn d\u1ea1ng ng\u01b0\u1eddi d\u00f9ng, th\u00f4ng tin ph\u1ea7n c\u1ee9ng, IP k\u1ebft n\u1ed1i.<\/span><\/li>\n<li><span>EMS sau khi nh\u1eadn \u0111\u01b0\u1ee3c th\u00f4ng tin Endpoint, d\u1ef1a v\u00e0o Endpoint Profile v\u00e0 ZTNA rule sex t\u1ef1 \u0111\u1ed9ng g\u1eafn nh\u00e3n cho client v\u1edbi c\u00e1c tr\u1ea1ng th\u00e1i t\u01b0\u01a1ng \u1ee9ng.<\/span><\/li>\n<\/ul>\n<\/li>\n<li><span>Fabric Sync:<\/span>\n<ul>\n<li><span>C\u00e1c thi\u1ebft b\u1ecb FortiGate trong Security Fabric t\u1ef1 \u0111\u1ed9ng k\u1ebft n\u1ed1i l\u00ean EMS v\u00e0 nh\u1eadn v\u1ec1 th\u00f4ng tin c\u0169ng nh\u01b0 tr\u1ea1ng th\u00e1i c\u1ee7a Endpoint \u0111\u1ec3 l\u01b0u v\u00e0o c\u01a1 s\u1edf d\u1eef li\u1ec7u trong kho\u1ea3ng th\u1eddi gian \u0111\u01b0\u1ee3c thi\u1ebft l\u1eadp.<\/span><\/li>\n<\/ul>\n<\/li>\n<li><span>Tunnel &amp; Posture check:<\/span>\n<ul>\n<li><span>Sau khi nh\u1eadn \u0111\u01b0\u1ee3c Endpoint Policy t\u1eeb EMS, n\u1ebfu Profile c\u00f3 thi\u1ebft l\u1eadp c\u00e1c Access Tunnel, Endpoint s\u1ebd t\u1ef1 \u0111\u1ed3ng t\u00ecm ki\u1ebfm c\u00e1c thi\u1ebft b\u1ecb FortiGate t\u01b0\u01a1ng \u1ee9ng \u0111\u1ec3 thi\u1ebft l\u1eadp Secure Tunnel \u0111\u1ec3 cung c\u1ea5p c\u00e1c k\u1ebft n\u1ed1i d\u1eef li\u1ec7u n\u1ed9i b\u1ed9.<\/span><\/li>\n<\/ul>\n<\/li>\n<li><span>Access:<\/span>\n<ul>\n<li><span>Sau khi qu\u00e1 tr\u00ecnh \u0111\u1ed3ng b\u1ed9 th\u00f4ng tin v\u00e0 ki\u1ec3m tra k\u1ebft n\u1ed1i \u0111\u01b0\u1ee3c thi\u1ebft l\u1eadp, Endpoint s\u1ebd truy c\u1eadp v\u00e0o t\u00e0i nguy\u00ean n\u1ed9i b\u1ed9 v\u1edbi c\u00e1c quy\u1ec1n h\u1ea1n t\u01b0\u01a1ng \u1ee9ng v\u1edbi nh\u00e3n \u0111\u01b0\u1ee3c g\u1eafn.<\/span><\/li>\n<\/ul>\n<\/li>\n<\/ol>\n<p class=\"has-medium-font-size\"><span><strong>Nh\u1eefng \u01b0u \u0111i\u1ec3m c\u1ee7a gi\u1ea3i ph\u00e1p Fortinet ZTNA<\/strong><\/span><\/p>\n<ol>\n<li><span>Ki\u1ebfn tr\u00fac \u0111\u1ed3ng b\u1ed9, c\u01a1 s\u1edf d\u1eef li\u1ec7u th\u00f4ng tin Endpoint, \u0111\u01b0\u1ee3c qu\u1ea3n l\u00fd t\u1eadp trung tr\u00ean n\u1ec1n t\u1ea3ng cloud ho\u1eb7c on-premise cho ph\u00e9p \u0111\u1ed3ng b\u1ed9 t\u1edbi t\u1ea5t c\u1ea3 c\u00e1c thi\u1ebft b\u1ecb FortiGate t\u1ea1i m\u1ecdi n\u01a1i.<\/span><\/li>\n<li><span>Cung c\u1ea5p t\u00ednh b\u1ea3o m\u1eadt cao v\u00e0 gi\u1ea3m thi\u1ec3u t\u1ed1i \u0111a kh\u1ea3 n\u0103ng b\u1ecb t\u1ea5n c\u00f4ng, kh\u1ea3i th\u00e1c gi\u1ea3 m\u1ea1o danh t\u00ednh th\u00f4ng qua c\u00e1c c\u00f4ng ngh\u1ec7 sau:<\/span>\n<ul>\n<li><span>X\u00e1c th\u1ef1c ng\u01b0\u1eddi d\u00f9ng: SSO, Remote Authentication\u2026<\/span><\/li>\n<\/ul>\n<ul>\n<li><span>X\u00e1c th\u1ef1c \u0111a l\u1edbp k\u1ebft h\u1ee3p nh\u1eadn d\u1ea1ng thi\u1ebft b\u1ecb th\u00f4ng qua nh\u00e3n (tag) \u0111\u01b0\u1ee3c thi\u1ebft l\u1eadp.<\/span><\/li>\n<\/ul>\n<ul>\n<li><span>User Identity Authentication per connection: nh\u1eadn d\u1ea1ng ng\u01b0\u1eddi d\u00f9ng tr\u00ean t\u1eebng k\u1ebft n\u1ed1i.<\/span><\/li>\n<\/ul>\n<ul>\n<li><span>Device Identity per session: ph\u00e2n lo\u1ea1i thi\u1ebft b\u1ecb d\u1ef1a tr\u00ean t\u1eebng phi\u00ean truy c\u1eadp d\u1eef li\u1ec7u.<\/span><\/li>\n<\/ul>\n<ul>\n<li><span>Device Posture: h\u1ed7 tr\u1ee3 kh\u1ea3 n\u0103ng ki\u1ec3m so\u00e1t l\u1ed7 h\u1ed5ng tr\u00ean Endpoint tr\u00ean th\u1eddi gian th\u1ef1c, cung c\u1ea5p kh\u1ea3 n\u0103ng Patching cho ph\u00e9p v\u00e1 c\u00e1c l\u1ed7 h\u1ed5ng b\u1ea3o m\u1eadt tr\u00ean thi\u1ebft b\u1ecb, t\u1ef1 \u0111\u1ed9ng \u0111\u00e1nh nh\u00e3n (tag) thi\u1ebft b\u1ecb n\u1ebfu ch\u01b0a c\u1eadp nh\u1eadt b\u1ea3n v\u00e1 cho ph\u00e9p Access Gate c\u00f3 th\u1ec3 nh\u1eadn d\u1ea1ng t\u00ednh an to\u00e0n tr\u00ean t\u1eebng thi\u1ebft b\u1ecb v\u00e0 \u0111\u01b0a v\u00e0o t\u1eebng Policy ph\u00f9 h\u1ee3p \u0111\u1ec3 x\u1eed l\u00fd.<\/span><\/li>\n<\/ul>\n<ul>\n<li><span>Access-Proxy: h\u1ed7 tr\u1ee3 HTTPS\/TCP proxy cho ph\u00e9p Endpoint t\u1ef1 \u0111\u1ed9ng thi\u1ebft l\u1eadp k\u00eanh b\u1ea3o m\u1eadt t\u1edbi m\u00e1y ch\u1ee7 \u1ee9ng d\u1ee5ng kh\u00f4ng c\u1ea7n th\u00f4ng quan c\u00e1c k\u00eanh VPN truy\u1ec1n th\u1ed1ng.<\/span><\/li>\n<\/ul>\n<ul>\n<li><span>T\u1ef1 \u0111\u1ed9ng ph\u00e1t hi\u1ec7n Endpoint \u1edf tr\u1ea1ng th\u00e1i On-Fabric\/Off-Fabric v\u00e0 thi\u1ebft l\u1eadp Endpoint Profile t\u01b0\u01a1ng \u1ee9ng.<\/span><\/li>\n<\/ul>\n<ul>\n<li><span>Qu\u1ea3n l\u00fd Endpoint linh ho\u1ea1t b\u1eb1ng Firewall Policy th\u00f4ng qua nh\u00e3n t\u00f9y v\u00e0o tr\u1ea1ng th\u00e1i Endpoint.<\/span><\/li>\n<\/ul>\n<\/li>\n<li><span>T\u00ednh n\u0103ng ZTNA \u0111\u01b0\u1ee3c cung c\u1ea5p mi\u1ec5n ph\u00ed tr\u00ean FortiOS, ch\u1ec9 c\u1ea7n \u0111\u1ea7u t\u01b0 License qu\u1ea3n l\u00fd Endpoint tr\u00ean EMS.<\/span><\/li>\n<li><span>Kh\u1ea3 n\u0103ng tri\u1ec3n khai linh ho\u1ea1t \u0111a n\u1ec1n t\u1ea3ng t\u1eeb Cloud t\u1edbi On-Premise<\/span><\/li>\n<\/ol>\n<p><span>Fortinet ZTNA Process<\/span><\/p>\n<\/p><\/div>\n<p>                            <!--                            <\/p>\n<div class=\"xemthem_id_r\">--><br \/>\n                            <!--                                <a><!--\/show\/?token=--><br \/>\n                            <!--\"--><br \/>\n                            <!--                                   class=\"preview fancybox fancybox.ajax\" rel=\"nofollow\"&gt;Xem th&#234;m th&#244;ng s&#7889; k&#7929; thu&#7853;t<\/a>--><br \/>\n                            <!--                            <\/div>\n<p>-->\n                        <\/p><\/div>\n<\/p><\/div>","protected":false},"excerpt":{"rendered":"<ul>\n<ul>\n<li>FortiClient EPP\/ATP gi\u00fap t\u0103ng c\u01b0\u1eddng b\u1ea3o m\u1eadt v\u00e0 qu\u1ea3n l\u00fd hi\u1ec7u qu\u1ea3 cho c\u00e1c thi\u1ebft b\u1ecb endpoint trong t\u1ed5 ch\u1ee9c.<\/li>\n<li>License Type (Lo\u1ea1i gi\u1ea5y ph\u00e9p): 1 n\u0103m cho 25 endpoint\u00a0<\/li>\n<\/ul>\n<\/ul>","protected":false},"featured_media":11242,"comment_status":"closed","ping_status":"closed","template":"","meta":[],"pwb-brand":[],"product_cat":[2922],"product_tag":[2856,55],"class_list":["post-11241","product","type-product","status-publish","has-post-thumbnail","product_cat-fortinet-license","product_tag-firewall","product_tag-run","first","instock","shipping-taxable","product-type-simple"],"brands":[],"_links":{"self":[{"href":"https:\/\/serverhot.vn\/ar\/wp-json\/wp\/v2\/product\/11241","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/serverhot.vn\/ar\/wp-json\/wp\/v2\/product"}],"about":[{"href":"https:\/\/serverhot.vn\/ar\/wp-json\/wp\/v2\/types\/product"}],"replies":[{"embeddable":true,"href":"https:\/\/serverhot.vn\/ar\/wp-json\/wp\/v2\/comments?post=11241"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/serverhot.vn\/ar\/wp-json\/wp\/v2\/media\/11242"}],"wp:attachment":[{"href":"https:\/\/serverhot.vn\/ar\/wp-json\/wp\/v2\/media?parent=11241"}],"wp:term":[{"taxonomy":"pwb-brand","embeddable":true,"href":"https:\/\/serverhot.vn\/ar\/wp-json\/wp\/v2\/pwb-brand?post=11241"},{"taxonomy":"product_cat","embeddable":true,"href":"https:\/\/serverhot.vn\/ar\/wp-json\/wp\/v2\/product_cat?post=11241"},{"taxonomy":"product_tag","embeddable":true,"href":"https:\/\/serverhot.vn\/ar\/wp-json\/wp\/v2\/product_tag?post=11241"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}