FortiSASE provides several features to ensure secure access for remote workers. The following three ways are particularly relevant:
It secures traffic from endpoints to cloud applications (Option B):
FortiSASE secures all traffic between remote endpoints and cloud applications by inspecting it in real time. This includes applying security policies, threat detection, and data protection measures to ensure that traffic is safe and compliant.
It offers zero trust network access (ZTNA) capabilities (Option D):
ZTNA ensures that remote workers are granted access to resources based on strict verification of their identity and device posture. By treating all users and devices as untrusted by default, ZTNA minimizes the risk of unauthorized access and lateral movement within the network.
It enforces granular access policies based on user identities (Option E):
FortiSASE allows administrators to define and enforce fine-grained access policies based on user identities, roles, and other attributes. This ensures that remote workers only have access to the resources they need, reducing the attack surface.
Here's why the other options are incorrect:
A . It enforces multi-factor authentication (MFA) to validate remote users: While MFA is a critical security measure, it is typically implemented through identity providers (e.g., FortiAuthenticator or third-party solutions) rather than directly through FortiSASE.
C . It uses the identity & access management (IAM) portal to validate the identities of remote workers: FortiSASE integrates with IAM systems but does not use the IAM portal itself to validate identities. Identity validation is handled through authentication mechanisms like SAML, LDAP, or OAuth.
Reference:
Fortinet FCSS FortiSASE Documentation - Secure Remote Access
FortiSASE Administration Guide - ZTNA and Access Policies