FortiCloud — every Fortinet SaaS service Indian enterprises can enrol today (no hardware required)
Published 29 Jun 2026
· By
Pawan Sharma
· Fortinet Cloud
· 54 min read
If you are an Indian enterprise security team starting a Fortinet evaluation in 2026, here is something most reseller decks miss: you do not need a Fortinet appliance to start using Fortinet. The FortiCloud platform now hosts 45+ services as pure SaaS — from FortiSASE and FortiMail Cloud to FortiSIEM Cloud, FortiEDR, FortiAppSec, Lacework FortiCNAPP, FortiRecon, FortiPhish and FortiDeceptor DaaS. Most can be provisioned in minutes against a free FortiCloud account, with a 30-day product trial available from the same portal. This is the definitive catalog — every service, what it does, deployment model, what's confirmed for India, and how to enrol.
Services on FortiCloud
45+
Across SASE, AppSec, email, cloud workload, detection, SOC, identity and brand-protection pillars.
India PoPs (FortiSASE)
Bangalore · Pune · Delhi · Mumbai
BLR-F2, PNQ-F1 (any tier); DEL-G2, BOM-G2 (Comprehensive).
Time to first tenant
~5–40 min
FortiEDR: 5 min shared / 40 min dedicated. FortiSASE: ~10 min. No hardware shipment.
Trial path
30 days
FortiCloud Asset Management → Product Trial → select service → Try It.
The shift, in one paragraphWhy the FortiCloud catalog matters for Indian buyers in 2026
For a decade, "buying Fortinet" in India meant procurement: a partner quote, a hardware order, a four-to-eight-week wait for shipping and provisioning, then a rack visit. That model still exists — and for FortiGate firewalls, FortiSwitch, FortiAP, and the bulk of the OT / industrial portfolio, it remains the dominant path. But almost every new capability Fortinet has shipped in the last three years — SASE, CNAPP, XDR, NDR, SOAR, DLP, DAST, EASM, deception, security awareness training — has come to market as a FortiCloud-hosted service first, with appliance/VM forms either lagging or never appearing at all. For an Indian CISO who wants to start a Fortinet evaluation tomorrow morning without raising a hardware PO, FortiCloud is now the entry point.
This post answers four questions, in this order: (1) what FortiCloud actually is, beyond a marketing umbrella; (2) the complete catalog of services available as pure SaaS, organised by pillar, with capabilities and tier names quoted as Fortinet brands them; (3) what's confirmed for India — region availability, PoP locations, data residency; and (4) the click-path from "I have nothing" to "first tenant provisioned." A final honest section names the products that are not on FortiCloud as SaaS, so nothing is oversold.
Platform layerWhat FortiCloud actually is
FortiCloud is Fortinet's unified identity and provisioning platform that sits beneath every Fortinet SaaS offering. A FortiCloud account — created free at support.fortinet.com — is the single identity used to register Fortinet hardware, activate trial subscriptions, provision SaaS tenants, manage entitlements and invite team members. Per the FortiCloud Services 26.2.0 concept guide, a standard FortiCloud account supports up to 10 member accounts out of the box. The "FortiCloud Premium" tier that used to gate multi-tenant organisation features has been folded into the base offering — that capability is now standard.
The portal's two main surfaces are Asset Management (at support.fortinet.com/asset/) for registering products, attaching subscriptions, and starting trials, and FortiCloud Services at forticloud.com, where individual SaaS tenants — FortiSASE, FortiMail Cloud, FortiSIEM Cloud, FortiAnalyzer Cloud, FortiManager Cloud, and the rest — are provisioned and accessed. Most SaaS services produce a service-specific subdomain on the FortiCloud portal once provisioned (for example, fortimanager.forticloud.com for FortiManager Cloud), all single-sign-on from the same FortiCloud identity.
The complete catalogEight pillars, every service Fortinet hosts as SaaS
What follows is the FortiCloud SaaS portfolio organised by the buyer's mental model: what problem the service solves, not what part of Fortinet's organisation built it. Forty-five tiles live on the official FortiCloud landing page; this section covers all of them, plus the few SaaS services that ship under independent portals (notably the Lacework-derived FortiCNAPP). Each card cites the official source URL where you can dig deeper.
Cloud-delivered secure access — your edge without an edge appliance
This pillar is where FortiCloud's SaaS portfolio first reached enterprise-scale maturity. Whether you need to retire branch firewalls, secure a remote workforce, or front a public app, the network layer is fully available without shipping a single box.
FortiSASE
What it is: Fortinet's flagship SSE platform. Bundles FWaaS, SWG, ZTNA (agent + agentless), inline CASB + FortiCASB API, DLP, RBI, SSPM, Secure SD-WAN integration, and end-to-end DEM on a single OS with one unified FortiClient agent. Fortinet operates 170+ PoPs globally, 1,200+ FortiGuard threat researchers behind the policy engine.
Three tiers: Standard (Fortinet Cloud PoPs only, up to 4 locations), Advanced (adds Public Cloud PoPs across AWS/Azure/GCP, predefined consulting included), Comprehensive (broader PoP coverage including Delhi + Mumbai Public Cloud PoPs, fewer location limits below 200 users).
FortiSASE Sovereign
What it is: Region-isolated FortiSASE variant for customers with sovereign data-residency or compliance constraints that exceed standard FortiSASE region selection. Sold as a distinct subscription with separate tenant infrastructure.
FortiGate CNF
What it is: Cloud-Native Firewall delivered as an AWS-native managed service. Customer subscribes via FortiCloud and AWS Marketplace; firewall is operated and updated by Fortinet inside the AWS region — no FortiGate-VM image to maintain, no EC2 instance type to size.
FortiGate-as-a-Service (FGaaS)
What it is: Fortinet-operated hosted FortiGate instances — Fortinet runs the firewall in their managed cloud, you administer policy via the standard FortiOS GUI or via FortiManager Cloud. For customers who want FortiOS without the operational responsibility of running their own virtual appliance.
Overlay-as-a-Service
What it is: Fortinet-hosted SD-WAN overlay-orchestration control plane. Eliminates the need to deploy and operate an on-prem SD-WAN controller for multi-site Fortinet SD-WAN deployments — control plane lives in FortiCloud; data plane runs on customer FortiGates.
FortiGSLB (FortiAppSec Cloud GSLB Service)
What it is: DNS-based Global Server Load Balancing as a SaaS. Geographic routing, DNSSEC, intelligent failover, health-checked backend pools — without operating BIND or a hardware load balancer for the DNS tier. Integrates with FortiADC and FortiAppSec Cloud for full application-tier intelligence.
Web, API, DevSec — protection that pre-dates your first prod request
The application-security pillar is where FortiCloud's SaaS model is most mature — for most customers, "Fortinet AppSec" means a CNAME pointed at a FortiCloud gateway, not a WAF appliance in a rack. The platform-level consolidation under FortiAppSec Cloud (which subsumes the legacy FortiWeb Cloud brand) means a single console covers WAF, API, bot, GSLB, DAST and threat-analytics.
FortiAppSec Cloud
What it is: Fortinet's umbrella SaaS WAAP — Web Application and API Protection. Per the official datasheet, consolidates "WAF, API security, advanced bot protection, GSLB, CDN, and threat analytics under a single FortiCloud-managed console." OWASP Top 10 coverage, zero-day defence via dual ML models, API discovery + schema-based defence (OpenAPI/XML/JSON), DDoS L3/L7 mitigation, FortiSandbox-integrated AV for file uploads, Client-Side Protection (CSP) for PCI-DSS browser scripts, FortiAI-Assist for policy tuning and alert triage.
Three tiers: Standard (core signature WAF, IP/Geo threat intel, custom rules, HTTP compliance, URL/cookie/CORS); Advanced (adds ML-based zero-day, AV + sandbox file scan, DAST, Threat Analytics); Enterprise (adds Advanced Bot Protection, full GSLB, additional custom rules, SOC-as-a-Service).
FortiWeb Cloud
What it is: The original FortiCloud WAFaaS branding. Per Fortinet, FortiWeb Cloud contracts have been migrated under the unified FortiAppSec Cloud platform — the WAF capability set is functionally identical, accessed through the FortiAppSec portal. Treat "FortiWeb Cloud" today as the WAF module within FortiAppSec Cloud rather than a separate product.
FortiDevSec
What it is: SaaS DevSecOps suite. Scanner runs as a Docker container inside your CI runner; results POSTed to FortiCloud and consolidated in the FortiDevSec portal. Covers:
- SAST — Java, JS, Python, Go, PHP, Ruby, C/C++, C#, Shell
- DAST — full + basic scan modes by URL target
- SCA — open-source vulns across major language ecosystems
- IaC scanning — Terraform, CloudFormation, K8s manifests
- Container image scanning + secret discovery
CI/CD integrations: Jenkins, GitHub Actions, GitLab, Azure DevOps, Bamboo, CircleCI, Drone, GCP Cloud Build, AWS CodePipeline, Travis, Bitbucket, JFrog.
FortiDAST
What it is: Standalone Dynamic Application Security Testing SaaS — for customers who want a dedicated DAST product separate from the DAST module inside FortiAppSec Advanced. Crawls running web applications, finds runtime vulnerabilities, generates findings into the standard FortiCloud workflow.
Cloud-native protection for M365, Google Workspace, and standard SMTP
Fortinet has rebuilt email security for the world where most enterprise mail is in Microsoft 365 or Google Workspace. The Hosted and SaaS variants of FortiMail Cloud cover both the MX-redirect (gateway) model and the post-delivery API-integration model — pick by your infrastructure preference, not your Fortinet entitlement.
FortiMail Cloud — Hosted
What it is: Fortinet-managed multi-tenant mail-gateway instance, sized per protected user/domain. You change your DNS MX records to redirect mail through FortiMail Cloud; Fortinet handles spam (99.97% catch rate per Virus Bulletin), anti-malware (100% detection per SE Labs AAA), advanced threat protection (CDR, impersonation detection, cousin-domain detection, click protection), FortiSandbox-integrated zero-day analysis, DLP and outbound encryption.
Three operation modes: Gateway (MX-redirect), Microsoft Graph / Google API integration (out-of-line, no MX change), Server (full SMTP/POP3/IMAP/WebMail).
FortiMail Cloud SaaS
What it is: Cloud-native variant optimised for M365 / Google Workspace API integration. No MX-record changes needed — uses Microsoft Graph and Google API to scan post-delivery, with clawback capability for messages already in the inbox. Targeted at enterprises that don't want to re-route their MX through a third-party gateway.
FortiMail Workspace Security
What it is: The product formerly known as Perception Point, brought into the Fortinet portfolio. Extends FortiMail Cloud coverage beyond email to the broader workspace — browser, collaboration tools, cloud apps. AI-powered threat prevention with rapid incident response.
From code to runtime — single-platform CNAPP plus CASB and Cloud Workload Protection
Since the Lacework acquisition, Fortinet has rebuilt its public-cloud security story around a unified Cloud-Native Application Protection Platform. For SaaS apps (M365, Salesforce, Google Workspace), FortiCASB still ships as a standalone product for the API-based SaaS visibility use case.
Lacework FortiCNAPP
What it is: Fortinet's flagship CNAPP, built on the Lacework platform. Per the official product page, "provides unmatched visibility and context to simplify securing everything from code to cloud" — combining CSPM, CIEM, CWPP, SAST + SCA + SBOM, IaC security, Kubernetes posture, and Cloud Detection & Response in a single AI-powered SaaS platform.
- CSPM across AWS, Azure, GCP, OCI
- CIEM — net-effective permissions, risk-scored over-privileged identities
- CWPP — runtime workload protection for hosts, containers, serverless
- SAST/SCA/SBOM for code-side application security
- CDR — Cloud Detection & Response (compromised creds, ransomware, cryptojacking)
- Both agent-based and agentless scanning supported
FortiCASB
What it is: Cloud Access Security Broker for SaaS applications — API-based, no agent. Latest version 24.4.b. Sold in 100-user and 500-user packs (including 1TB / 5TB data-security scanning). Note: this is separate from the inline CASB capability that ships inside FortiSASE — the standalone FortiCASB SKU targets pure API-based SaaS-app visibility.
App integrations: Office 365, Google Workspace, Salesforce, AWS S3, Azure Storage, Box, Dropbox, GitHub, Jira, ServiceNow, Confluence, Zoom, Webex, SAP. Compliance reporting for SOX, GDPR, PCI, HIPAA, NIST, ISO 27001.
FortiCNP
What it is: Cloud-Native Protection — Fortinet's earlier CSPM SaaS product, predating the Lacework acquisition. Still listed in the FortiCloud catalog (concept guide 174099), but new investment and feature development is concentrated on FortiCNAPP. Treat as a legacy product for existing customers; new evaluations should look at FortiCNAPP.
FortiCWP
What it is: Cloud Workload Protection — predecessor to FortiCNAPP for the workload-protection side. Latest documented version 22.2.a (online help updated July 2025). Both FortiCWP and FortiCNAPP remain documented separately; neither carries an explicit deprecation notice, but product-marketing focus has clearly shifted to FortiCNAPP. Existing FortiCWP customers can continue; new buys belong on FortiCNAPP.
EDR, XDR, NDR, sandboxing and deception — every detection layer as a managed service
Detection and response is the densest pillar in the FortiCloud catalog because Fortinet's strategy here is platform-led — FortiEDR is the foundation, FortiXDR extends it with cross-product correlation, and dedicated SaaS layers (FortiNDR Cloud, FortiSandbox Cloud, FortiDeceptor DaaS) plug in to widen coverage. The management plane is uniformly SaaS; agents and sensors land on-prem where they have to be.
FortiEDR (Cloud-managed)
What it is: Fortinet's flagship EDR, with Central Manager hosted on FortiCloud (one tenant per FortiCloud account). Per the deployment guide: "click PROVISION to start the provisioning process, which takes about 5 minutes for a new organisation in a shared environment and 40 minutes for a dedicated environment." Pre-execution prevention, post-infection containment, customisable IR playbooks, real-time roll-back of malicious changes, virtual patching for legacy POS systems.
Editions: Discover & Protect (EPP-light); Discover & Protect & Respond (full EDR); + XDR; + Standard MDR; + Managed XDR. License packs: 25 / 500 / 2,000 / 10,000.
Supported OS: Windows XP SP2/SP3, 7, 8, 8.1, 10, 11; Server 2003 through 2025; macOS El Capitan through Sequoia; Linux (RHEL, CentOS, Ubuntu LTS, Oracle Linux, Amazon Linux, SUSE); Android 9.0+; iOS 15.0+; VDI (VMware Horizon, Citrix XenDesktop).
FortiXDR
What it is: Cross-product extended detection. Per Fortinet's datasheet: collapses low-fidelity alerts into high-fidelity events (claimed ~77% event reduction), AI-powered investigation with sub-30-second classifications, extended response actions across firewalls, email security, IAM, NDR, NGFW, cloud security. 300+ pre-built third-party integrations.
Data sources ingested: FortiEDR (native), plus email security, IAM, NDR, NGFW, cloud security, FortiSandbox via the Fortinet Security Fabric.
FortiNDR Cloud
What it is: SaaS network detection and response. Per docs: "FortiNDR Cloud is a SaaS network security monitoring platform designed to facilitate rapid detection, investigations, and threat hunting." AI/ML behavioral analytics, lateral-movement detection, data-exfiltration detection, privilege-escalation alerts; FortiGuard Labs-curated detections; vendor-claimed sub-1% false-positive rate.
Cloud regions: US, Europe, APAC. Data retention: 365 days. Sensors: hardware (FortiNDRCloud-2540G / 900G / 500G) or virtual (AWS, Azure, GCP, ESXi, KVM). Licensing: bandwidth-based on aggregate sensor traffic.
FortiClient Cloud (FortiClient EMS Cloud)
What it is: SaaS endpoint management — "FortiClient Cloud is a cloud-based software-as-service endpoint management service and a Fortinet-hosted EMS solution… manage up to 500 endpoints with a simplified cloud infrastructure created and managed by Fortinet." SOC2-certified.
Editions: VPN/ZTNA Edition (remote access + zero-trust); EPP/APT Edition (NGAV + advanced threat prevention); Chromebook Edition; Managed Service tier available.
Capabilities: Zero-Trust Agent with MFA, AI-powered NGAV, endpoint audit + vulnerability scanning, application firewall, web filtering, USB device control, automated endpoint quarantine.
FortiSandbox Cloud (FortiSandbox PaaS)
What it is: Cloud-based sandbox for zero-day detection. Per docs: "FortiSandbox PaaS is a cloud-based sandbox service. The service subscription is available for purchase under FortiCloud." Static + dynamic analysis in a cloud VM host module; inline malware prevention with sub-second verdicts via the FortiGuard Inline Malware Prevention Service; threat-intel sharing across the Fortinet Security Fabric.
File submission: from FortiGate, FortiMail, FortiWeb, FortiProxy, FortiClient — no separate agent.
FortiDeceptor DaaS
What it is: Deception-as-a-Service — cyber-deception fabric hosted in Fortinet's private cloud. Decoys + breadcrumbs + lures across Windows Desktop/Server, Linux, VPN, IoT, OT/SCADA, and Active Directory honeytokens. Automated active/passive asset discovery, optimised decoy-placement recommendations, real-time forensics with IOC + TTP capture, automatic endpoint isolation on attack detection.
A lightweight FortiDeceptor 100G Edge (hardware or virtual) connects via secure Layer 2 tunnel from Fortinet's private cloud to customer VLANs using unused IP addresses. MSSP model also supported.
FortiDLP
What it is: Cloud-native data loss prevention (formerly Next DLP, acquired by Fortinet). Endpoint + cloud-native DLP, insider-risk visibility, behavioral analytics for data movement. Sold as a FortiCloud SaaS subscription with a cloud-managed agent on endpoints.
SIEM, SOAR, log analytics, device management, fully managed SOC — every layer of the SOC, hosted
This pillar is where the FortiCloud catalog meets your SOC org chart. Whether you're building an in-house SOC or shopping for SOC-as-a-Service, the underlying products are available as SaaS — no on-prem appliance, no VM image to maintain, no minor-version patching grind. For Indian buyers specifically: FortiSIEM Cloud confirms India (Mumbai) as a Region A location in its provisioning UI; FortiSOAR Cloud, on the other hand, is only available in Canada / US / Germany regions today.
FortiSIEM Cloud
What it is: Cloud-hosted SIEM with event correlation, UEBA, asset discovery, FortiGuard IoC feed, agent support (no separate agent license), and FortiAI-Assist for alert triage and config-script generation. FortiSIEM Cloud is a distinct product line from on-prem FortiSIEM (different licensing model; storage provisioned via FortiCloud Portal rather than the GUI; Cloud Health replaces the on-prem health page).
Sizing model: FortiSIEM Compute Units (FCUs) + storage SKUs:
FC-10-SMCLD-543-02-DD— entitlement with allocated FCUsFC-10-SMCLD-541-02-DD— +500 GB online storage (min. 1 required)FC-10-SMCLD-542-02-DD— +500 GB archive storage
FortiAnalyzer Cloud
What it is: Cloud-based central logging and analytics for the Fortinet Security Fabric. Log collection from FortiGate, FortiClient/FortiEndpoint, FortiMail, FortiNDR, FortiSandbox (last four require Additional Storage SKU); IoC scans; FortiView dashboards; system health + security log analytics; reports. The analytics-layer foundation for Fortinet's SOC-as-a-Service offering.
Licensing: per source device + per log volume. FortiGate logging via FC-10-[Model]-585-02-DD (standalone) or FC-10-[Model]-464-02-DD (SOCaaS bundle). FortiEndpoint logging tiered by device count (25–49 → 50 MB/day, scaling to 10,000+ → 20 GB/day). Additional storage SKUs from +5 GB/day to +500 GB/day. Available individually or via FortiCare 360 Protection Bundle.
FortiSOAR Cloud
What it is: SaaS Security Orchestration, Automation and Response. 700+ multi-vendor integrations; 6,500+ pre-built playbooks; integrated secure message exchange; active-active clustering for horizontal scaling (from 7.6.0); managed upgrades by Fortinet (from 7.6.1); FortiAI generative-AI for playbook authoring.
Editions: Enterprise; MultiTenant Edition – Manager; Dedicated Tenant; Regional SOC. Add-ons: Threat Intel Management (with FortiGuard feeds), User Seat Licenses, per-VM CPU/RAM/storage expansions.
FortiManager Cloud
What it is: Cloud-based central management for FortiGate devices. Activated as a sub-licence on a FortiGate via FortiCloud entitlement. Policy + object configuration, configuration backup, firmware upgrades, SSH access to managed devices, FortiAI-Assist for natural-language policy authoring.
Be aware of feature gaps vs on-prem FortiManager: no ADOM creation, no advanced ADOM mode, no HA, no SAML SSO, no remote auth servers, no auto-device-discovery (manual add only), no remote GUI access to managed FortiGates (SSH only), no FortiAnalyzer management, no SNMP monitoring. For most SMB and mid-market FortiGate estates these gaps are immaterial; for large enterprise consolidation, evaluate the on-prem FortiManager VM/appliance instead.
FortiGuard SOC-as-a-Service (SOCaaS)
What it is: Fortinet-staffed SOC analyst service wrapped around FortiAnalyzer Cloud. The "FortiGate logging with SOCaaS" SKU (FC-10-[Model]-464-02-DD) replaces the standalone logging SKU and adds Fortinet SOC analyst coverage. A free FortiAnalyzer Cloud is provided for POC if the customer doesn't already have one. 30-day trial available with Account Manager approval.
Important deployment note: each firewall in an A/P HA pair needs its own SOCaaS SKU.
FortiMonitor
What it is: SaaS digital experience monitoring and network performance monitoring (successor to the Panopta product Fortinet acquired). Endpoint-to-application DEM, continuous hop analytics with real-time route visualisation, customisable network topology mapping, synthetic monitoring from global public nodes and from private networks, native incident management workflows.
Two on-prem components (lightweight): the FortiMonitor Agent (Windows/Linux/Unix on physical/VM/cloud servers) and the OnSight vCollector (Linux VM, AWS AMI, Azure VM, or Docker image — sits inside the customer network for SNMP polling and agent-proxy duties; min 1 core + 1 GB RAM per 1,000 checks).
FortiGate Cloud
What it is: Lightweight SaaS portal for managing FortiGate devices, targeted at SMB and small-IT-team deployments where a full FortiManager is overkill. Auto-discovery of registered FortiGates, basic reporting, configuration backup, log retention. Both a free tier and a paid tier exist.
What your enemy sees, what your users do — the SaaS layer outside your perimeter
This pillar is where Fortinet shipped some of its strongest 2024-2026 SaaS products. EASM and security awareness training are entire categories that didn't exist in Fortinet's portfolio five years ago; they exist now because the platform-shift to FortiCloud SaaS made them viable to deliver.
FortiRecon
What it is: Continuous Threat Exposure Management — three integrated SaaS modules:
- External Attack Surface Management (EASM) — continuous monitoring of internal and external attack surfaces from an adversary's perspective; uncovers blind spots, prioritises by exploitation risk, identifies exposed assets
- Adversary Centric Intelligence (ACI) — dark web + open source + technical threat intelligence; ransomware actor tracking; leaked-credential and card-fraud monitoring; supply-chain vendor risk
- Brand Protection — fake-domain detection + rapid takedown; brand and executive impersonation; rogue mobile app detection across app stores; phishing campaign identification; code-repository data-leak detection
Integrates with SIEM/SOAR for risk and threat-intel correlation. MITRE ATT&CK mapping of detections.
FortiSAT (Security Awareness & Training)
What it is: Fortinet's unified human-risk platform — phishing simulation + awareness training + per-user risk scoring delivered from a single FortiCloud SaaS. In Q1 2026 Fortinet merged the legacy FortiPhish phishing-simulation service and the standalone Security Awareness and Training LMS into FortiSAT; both legacy brand names still appear in older docs, but new enrolments land on the unified product.
- Pre-built and customisable phishing email + landing-page templates
- 25+ base training modules, 12+ micro modules, 20+ nano videos
- Per-user / group / organisation risk scoring (the unified "human risk" metric across phish + training)
- Outlook add-in for phish-alert reporting from the user's inbox
- Azure AD / LDAP sync, SCIM user provisioning, SSO for admins and end users
- Failed-phishing events auto-assign remedial training to the specific user — closed loop, no analyst gluing it together
Deployment: per the FortiSAT docs, "a SaaS-based security awareness training and phishing simulation service that delivers rapid deployment, automatic updates, and scalable protection without on-premises infrastructure." Zero hardware.
The platform plumbing — identity, tokens, provisioning, support
The remaining services on the FortiCloud catalog are platform plumbing: identity, tokens, zero-touch provisioning, voice, support tiers. None are headline products by themselves, but together they cover the operational layer that lets the rest of the catalog work.
FortiAuthenticator Cloud
What it is: Identity-as-a-Service. Adaptive MFA (push + hardware token), SAML + OIDC web SSO, FIDO passwordless authentication, identity federation for SaaS apps, certificate management, native FortiGate integration for VPN/admin auth.
Nuance: per the official FAQ, "only a single instance is provided per FortiCloud account" — i.e. each FortiCloud account gets a dedicated instance rather than classic multi-tenant. Functionally still SaaS from the customer perspective (no infrastructure to manage); per-user annual subscription.
FortiIdentity Cloud
What it is: Secure SSO and authentication for cloud accounts; designed to protect account breaches across federated services. Sits alongside FortiAuthenticator Cloud in the FortiCloud SaaS Management catalog.
FortiToken Cloud
What it is: Cloud-delivered MFA token provisioning and management. Pairs with FortiGate, FortiAuthenticator, FortiAuthenticator Cloud, and the FortiToken Mobile app on iOS/Android. SaaS-only — no hardware token infrastructure required.
FortiZTP (Zero Touch Provisioning)
What it is: Cloud-based zero-touch provisioning for FortiGate, FortiSwitch, FortiAP, FortiExtender. Ship a device to a remote site; user plugs it in; FortiZTP authenticates the device against FortiCloud and pushes its initial configuration — no truck roll, no on-site engineer.
FortiVoice Cloud
What it is: Cloud-hosted unified communications. Voice, conferencing, call management, IVR, mobile/desktop softphones. Targeted at SMB and mid-market that want to retire on-prem PBX hardware.
FortiFlex
What it is: Points-based licensing portal. Lets enterprises pre-purchase capacity and burn it across FortiCloud subscriptions and licenses as needed — useful for organisations that want flexible licensing without negotiating every new SKU.
FortiCare Elite
What it is: Premium FortiCare support tier with advanced support portal, faster SLAs, dedicated TAM-style escalation. Sold as a FortiCloud-attached service rather than a per-device add-on.
FortiConverter
What it is: Cloud config-migration tool. Converts firewall configs from competitor platforms (Check Point, Cisco ASA, Palo Alto, Juniper) to FortiOS. SaaS workflow: upload source config, run conversion, download FortiOS configuration draft for review.
Where Fortinet's SaaS livesIndia PoPs and regional data residency
For Indian enterprise buyers, the data-residency question often determines whether a Fortinet SaaS service is viable at all. Below is what's confirmed from official Fortinet documentation as of June 2026. For services not explicitly listed here, region selection is offered at provisioning — confirm the India option exists for your specific SKU before signing.
| Service | India region status | Where it's hosted |
|---|---|---|
| FortiSASE — Standard / Advanced | YES · Bangalore (BLR-F2), Pune (PNQ-F1) | Fortinet-owned Cloud Security PoPs |
| FortiSASE — Comprehensive | YES + extra PoPs · adds Delhi (DEL-G2), Mumbai (BOM-G2) | Public Cloud Security PoPs (gated to Comprehensive) |
| FortiSIEM Cloud | YES · Mumbai listed as Region A location | Fortinet-hosted Region A; cannot be changed after provisioning |
| FortiNDR Cloud | YES (APAC) · listed regions: US, Europe, APAC | Fortinet-hosted; specific Indian AZ confirm via sales |
| FortiSOAR Cloud | NO · Burnaby (Canada), Dallas (USA), Frankfurt (Germany) only | Indian customers using FortiSOAR Cloud have data residency outside India — flag this in compliance reviews |
| FortiAppSec Cloud | YES (via hyperscaler) · gateways run inside AWS / Azure / GCP / OCI regions | Apps in AWS ap-south-1 (Mumbai) or Azure Central India get in-region scrubbing |
| FortiMail Cloud (Hosted & SaaS) | Region selection at provisioning · region cannot be changed once tenant is created | Confirm India region via FortiCloud provisioning UI before quoting customer |
| FortiEDR Cloud | Region selection at provisioning time | Provisioning page offers timezone + cloud region selection |
| FortiSandbox Cloud | Customer picks region at provisioning | Portal: fortisandboxcloud.com |
| FortiAnalyzer Cloud · FortiManager Cloud | Region selection at provisioning · Mumbai option not explicitly confirmed in docs | Provisioning UI presents region picker; confirm Mumbai option via Fortinet sales before quoting India-resident customer |
Honest qualifier on regional data residency. Fortinet's public documentation is comprehensive for FortiSASE, FortiSIEM Cloud, FortiNDR Cloud, FortiSOAR Cloud — the four most-asked-about services in compliance reviews. For other products, the region-picker at provisioning is the canonical source of truth. If your compliance position requires data-in-India for, say, FortiAnalyzer Cloud, request a written confirmation from the Fortinet account team during purchase rather than relying on doc-portal generality. Region cannot be changed after initial provisioning for most services in this portfolio.
The click pathFrom zero account to first FortiCloud SaaS tenant
The onboarding flow is uniform across most FortiCloud SaaS services. Here it is, step by step — works equally well for an enterprise PoC and for a paid production deployment.
Create a FortiCloud account
Navigate to support.fortinet.com. Click Create Account. Provide work email, company name, contact details. Verify the email link. The new account becomes your primary FortiCloud identity — every subsequent SaaS subscription attaches here. Wait ~30 minutes after account creation before attempting to provision any service (Fortinet's docs explicitly call this out — backend identity propagation needs the cooldown).
Receive your registration code
When you purchase a service SKU (or activate a trial), Fortinet emails a registration code to the primary FortiCloud account email. For trials: navigate to FortiCloud Asset Management → Product Trial Subscriptions, click Try It on the desired service (e.g., FortiSASE 30-day trial), accept terms — registration is automatic, no SKU email needed.
Register the entitlement
From FortiCloud → Asset Management → Register Product. Enter the registration code or serial number. The asset attaches to your account and unlocks the related service in the FortiCloud Services menu.
Provision the service tenant
From the FortiCloud landing page, click into the relevant service tile (FortiSASE, FortiSIEM Cloud, FortiMail Cloud, etc.). Click Provision. Configure the service-specific options — region, timezone, admin password, deployment-type (Enterprise vs Service Provider for FortiSIEM Cloud), domains (FortiMail Cloud), CIDR blocks. Accept terms.
Wait for tenant build
Provisioning times: FortiSASE ~10 minutes; FortiEDR ~5 min shared / 40 min dedicated; FortiMail Cloud, FortiAnalyzer Cloud, FortiManager Cloud, FortiSOAR Cloud all "a few minutes" per their docs. Status visible in the FortiCloud portal.
Access the service portal
Each FortiCloud SaaS service runs at its own subdomain — fortimanager.forticloud.com, fortisandboxcloud.com, portal.appsec.fortinet.com, the FortiSIEM Cloud GUI, etc. Single sign-on from the FortiCloud identity carries through. Configure users (SCIM with Entra ID / Okta / FortiAuthenticator, or SAML SSO, or LDAP/RADIUS), set up integrations (FortiGate logs into FortiAnalyzer Cloud, CNAME DNS to FortiAppSec, MX records to FortiMail Cloud Hosted), and start protecting traffic.
Honest sectionWhat's NOT on FortiCloud as SaaS
Not every Fortinet product has been ported to a SaaS delivery model — yet. Treat this list as the boundary line. If a sales conversation suggests one of these is available "as cloud SaaS," ask for the specific FortiCloud portal URL. If the answer is anything other than a portal URL you can navigate to, the product isn't pure SaaS — it's a marketplace VM or an appliance.
| Product | Available as | Why it's not on this list |
|---|---|---|
| FortiADC | Appliance, VM, AWS/Azure/GCP/OCI marketplace BYOL or PAYG | No Fortinet-hosted load-balancer-as-a-service. The cloud-delivered piece is FortiGSLB (DNS-tier GSLB only) — cannot replace ADC for L4/L7. |
| FortiPolicy | VMware ESXi VM only | Getting Started guide is VMware-only; not listed in the FortiCloud Services catalog. No SaaS variant. |
| FortiAIOps | VM (ESXi, Hyper-V, KVM, Nutanix, Proxmox), public-cloud BYOL VM, hardware appliance | "You can deploy FortiAIOps on supported VM, public cloud, and hardware platforms" — all customer-installed. Not in the FortiCloud Services catalog. |
| FortiPAM (Privileged Access Mgmt) | FortiPAM Public Cloud (AWS/Azure marketplace VM); FortiPAM Private Cloud (hypervisor VM) | Customer-deployed VM, not multi-tenant FortiCloud-portal SaaS. |
| FortiSIEM (on-prem) | Appliance + VM | The on-prem version is a different product line from FortiSIEM Cloud. The SaaS one IS on FortiCloud (with India region); the appliance one is not. |
| FortiAnalyzer (on-prem) | Hardware (150G / 300G / 810G / 1000G / 3100G / 3510G / 3700G / BigData 4500G), VM | FortiAnalyzer Cloud is the SaaS variant. The on-prem appliance/VM is a separate product line. |
| FortiAI (as a tenant you provision) | Embedded capability across FortiGate, FortiSIEM, FortiAnalyzer, FortiManager, FortiWeb, FortiCNAPP, FortiGuard IPS | No standalone "FortiAI Cloud" you provision. FortiAI is a family of embedded capabilities (FortiAI-Protect, FortiAI-Assist, FortiAI-SecureAI, FortiAIGate) delivered inside other Fortinet products via FortiGuard updates. |
| FortiInsight (UEBA) | Capability folded into FortiSIEM | "FortiInsight agent and FortiInsight AI engine are now embedded in the FortiSIEM solution with fully integrated user experience." No fresh standalone enrollment path in 2025-2026. |
The summary tableThe full FortiCloud SaaS catalog, at a glance
Forty-five tiles on the FortiCloud landing page, grouped here by the pillar they belong to in the buyer's mental model. Pure-SaaS products (where Fortinet operates the entire service) are listed alongside cloud-managed products (where Fortinet's SaaS portal controls a customer-owned appliance/agent). The distinction matters for compliance, latency, and operational responsibility.
| Service | Type | What it does |
|---|---|---|
| Network & SASE | ||
| FortiSASE | Pure SaaS | Cloud-delivered SSE — FWaaS, SWG, ZTNA, CASB, DLP, RBI, SSPM |
| FortiSASE Sovereign | Pure SaaS | Region-isolated FortiSASE for sovereign/compliance customers |
| FortiGate CNF | Pure SaaS | AWS-native managed Cloud-Native Firewall |
| FortiGate-as-a-Service | Pure SaaS | Fortinet-hosted virtual FortiGate instances |
| Overlay-as-a-Service | Pure SaaS | SD-WAN overlay orchestration control plane |
| FortiGSLB | Pure SaaS | DNS-based Global Server Load Balancing |
| Application Security | ||
| FortiAppSec Cloud | Pure SaaS | WAAP platform — WAF, API, bot, GSLB, CDN, threat analytics |
| FortiWeb Cloud | Pure SaaS | WAF module within FortiAppSec Cloud (legacy brand) |
| FortiDevSec | Pure SaaS | DevSecOps pipeline scanning — SAST/DAST/SCA/IaC/secrets |
| FortiDAST | Pure SaaS | Standalone Dynamic Application Security Testing |
| Email Security | ||
| FortiMail Cloud Hosted | Pure SaaS | Multi-tenant mail gateway, MX-redirect model |
| FortiMail Cloud SaaS | Pure SaaS | M365/Workspace API integration, no MX change |
| FortiMail Workspace Security | Pure SaaS | Email + browser + collaboration + cloud apps (ex-Perception Point) |
| Cloud Workload & Posture | ||
| Lacework FortiCNAPP | Pure SaaS | Unified CNAPP — CSPM, CIEM, CWPP, SAST, IaC, CDR |
| FortiCASB | Pure SaaS | SaaS app CASB — API-based, no agent |
| FortiCNP | Pure SaaS (legacy) | Earlier CSPM SaaS, superseded by FortiCNAPP |
| Detection & Response | ||
| FortiEDR | Pure SaaS (agent on-device) | Endpoint detection & response — Central Manager on FortiCloud |
| FortiXDR | Pure SaaS | Extended detection & response, cross-product correlation |
| FortiNDR Cloud | Pure SaaS (sensors on-prem) | SaaS NDR with 365-day retention, AI/ML behavioral analytics |
| FortiClient Cloud | Pure SaaS | SaaS endpoint management (FortiClient EMS Cloud) |
| FortiSandbox Cloud | Pure SaaS / PaaS | Cloud-based sandbox, file submission from Fortinet Fabric |
| FortiDeceptor DaaS | Pure SaaS (100G Edge connector) | Cyber-deception as a Service — decoys, lures, breadcrumbs |
| FortiDLP | Pure SaaS | Cloud-native data loss prevention (ex-Next DLP) |
| SOC Operations | ||
| FortiSIEM Cloud | Pure SaaS | Cloud-hosted SIEM with UEBA, FortiGuard IoC, FortiAI-Assist — Mumbai region available |
| FortiAnalyzer Cloud | Pure SaaS | Central log analytics + reporting, foundation for SOCaaS |
| FortiSOAR Cloud | Pure SaaS | SaaS SOAR with 700+ integrations, 6,500+ playbooks — Canada/US/Germany only |
| FortiGuard SOCaaS | Pure SaaS + analyst service | Co-managed SOC wrapped around FortiAnalyzer Cloud |
| FortiManager Cloud | Cloud-managed | Centralised FortiGate management portal |
| FortiGate Cloud (SMB) | Cloud-managed | Lightweight FortiGate manager for SMB |
| FortiEdge Cloud | Cloud-managed | FortiAP / FortiSwitch / FortiExtender management |
| FortiMonitor | Pure SaaS | Digital experience monitoring + network performance monitoring |
| Managed FortiGate Service | Managed service | Co-managed firewall wrapped around customer FortiGate |
| External, brand & awareness | ||
| FortiRecon | Pure SaaS | EASM + ACI + Brand Protection · Overall Leader, KuppingerCole 2025 |
| FortiSAT | Pure SaaS | Unified phishing simulation + awareness training + human-risk scoring (FortiPhish + Security Awareness merged Q1 2026) |
| Identity, trust & operations | ||
| FortiAuthenticator Cloud | Pure SaaS | IDaaS — MFA, SAML/OIDC SSO, FIDO passwordless |
| FortiIdentity Cloud | Pure SaaS | Cloud SSO + authentication |
| FortiToken Cloud | Pure SaaS | OTP / push MFA provisioning |
| FortiZTP | Pure SaaS | Zero-touch device provisioning |
| FortiVoice Cloud | Pure SaaS | Cloud unified communications (UCaaS) |
| FortiPresence | Pure SaaS | Wi-Fi analytics from FortiAPs |
| FortiCamera Cloud | Cloud-managed | Video surveillance NVR cloud |
| FortiConverter | Pure SaaS | Cloud config-migration tool (Check Point / ASA / PAN / Juniper → FortiOS) |
| FortiFlex | Pure SaaS | Points-based flexible licensing portal |
| FortiCare Elite | Pure SaaS | Premium support tier |
| FortiDevice | Pure SaaS | Device asset registration portal |
| FortiClient Services | Managed service | Fortinet-managed FortiClient operations |
| FortiExtender Cloud | Cloud-managed | 5G/LTE gateway management |
Where Ogma fitsHow you actually buy these — the partner-only reality
One thing every Fortinet buyer in India learns quickly: even for the SaaS services, Fortinet sells through partners only. There is no direct-purchase path on fortinet.com for FortiSASE, FortiSIEM Cloud, FortiMail Cloud, FortiAppSec, FortiEDR, FortiRecon, FortiCNAPP, FortiSAT or any other paid FortiCloud subscription. Trials you can self-serve from FortiCloud Asset Management; production purchases route through an authorised partner who quotes the SKU, generates the registration code, and stays as your commercial relationship for the life of the contract. This is true globally — and in India, where channel-led GTM is the default for almost every enterprise security vendor, it's enforced rigorously.
That partner-only model is a feature, not friction — it puts a real human between you and the SKU complexity. But it also means the partner you pick shapes outcomes more than the products do. Four places where Ogma adds value as your Fortinet partner across the FortiCloud catalog:
1 · Sizing and licensing optimisation. FortiCloud SKUs are dense — FortiSIEM Cloud has separate entitlement, online-storage, and archive-storage SKUs; FortiAnalyzer Cloud is per-FortiGate-model plus per-log-volume; FortiSASE tier choice depends on PoP geography. A partner who has quoted a hundred of these knows the cost-traps (paying for archive storage you'll never query, sizing FCUs too aggressively, missing the SOCaaS-bundled FortiAnalyzer SKU that gives you the same logging cheaper). Two or three hours of partner sizing time typically saves 15-30% of a three-year TCO.
2 · Integration mapping with your existing stack. FortiCloud SaaS plays well with the rest of the Fortinet Fabric — but most enterprises also run Microsoft 365, ServiceNow, Splunk, Okta, AWS / Azure, ITSM platforms, identity providers. Working out where FortiSASE's ZTNA replaces your existing VPN, where FortiAnalyzer Cloud feeds your Splunk via syslog forwarding instead of replacing it, where FortiSOAR Cloud integrates with your ServiceNow incident workflow — that's design work. We do it with our existing customers as part of onboarding; an independent enterprise that hasn't done it before will spend 2-4× longer working it out solo.
3 · Lifecycle ownership — renewals, expansions, billing. Because Fortinet routes all paid SaaS through the partner, your renewal cycle, expansion negotiations, mid-term up-sizing, and contract-level commercial conversations all run through the partner desk — not Fortinet's account team. The partner you onboard with is the partner you're calling 36 months from now to renew. Worth picking carefully.
4 · SOC-as-a-service wrap-around. FortiGuard SOCaaS is genuinely good — Fortinet-staffed SOC analysts triaging your FortiAnalyzer Cloud alerts is a strong proposition for a mid-market enterprise that doesn't want to build an in-house SOC. But it's a fixed-scope service: Fortinet's analysts don't sit on your CAB, don't sign your DPDP compliance report, don't co-own your VAPT remediation backlog. Where Ogma adds value is the wrap layer — our AI-first SOC operations and named-CISSP vCISO sit on top of (or alongside) the FortiGuard SOCaaS infrastructure, owning the customer-facing relationship while Fortinet's analysts handle the underlying detection work. The result is a single accountability surface for the customer, with Fortinet's platform underneath.
Want a 30-minute FortiCloud architecture review?
We'll map your existing stack onto the FortiCloud catalog, identify the three services with the highest ROI for your environment, and quote them honestly — no obligation, no SKU bingo. Ogma is an authorised Fortinet partner with operational depth across the full FortiCloud portfolio.
Book a FortiCloud review +91 80 0979 0979 · [email protected]Common questionsFAQ
Do I need a FortiGate firewall to use any of these FortiCloud services?
No, not for the majority of them. Pure-SaaS services like FortiSASE, FortiMail Cloud, FortiAppSec Cloud, FortiEDR, FortiSIEM Cloud, FortiSOAR Cloud, FortiRecon, FortiPhish, Lacework FortiCNAPP, FortiCASB, FortiAuthenticator Cloud, FortiSandbox Cloud and the rest work without any Fortinet hardware on your premises. The cloud-managed services (FortiManager Cloud, FortiGate Cloud, FortiEdge Cloud) do control existing Fortinet devices, so they only make sense if you already own them. A handful of services need a thin on-prem footprint — FortiNDR Cloud needs sensors, FortiDeceptor DaaS needs the 100G Edge connector, FortiMonitor benefits from an OnSight vCollector — but the management plane is fully SaaS in every case.
How long does it take to get the first FortiCloud SaaS service running?
FortiCloud account creation takes 5 minutes, plus a 30-minute backend cooldown before you can provision a service. FortiEDR is the fastest tenant build — 5 minutes for shared, 40 minutes for dedicated. FortiSASE provisions in about 10 minutes. FortiMail Cloud, FortiAnalyzer Cloud, FortiManager Cloud, and FortiSOAR Cloud all complete "in a few minutes" per their official deployment guides. End-to-end, from no account to first usable tenant: roughly an hour, assuming you have the SKU registration code or are starting a 30-day trial.
Can I trial FortiCloud services before paying?
Yes — Fortinet offers 30-day product trials directly from the FortiCloud Asset Management portal. The flow is: log in to FortiCloud, navigate to Asset Management, click the Product Trial icon in the Registration tile, select the service, click Try It. Most major FortiCloud SaaS products are available via this path, including FortiSASE. SOCaaS specifically requires Account Manager approval for the 30-day trial — flag this if you want to evaluate the managed-analyst service.
What's the difference between FortiSIEM Cloud and on-prem FortiSIEM?
Three things, per Fortinet's official differences page. (1) Licensing is handled by FortiCloud — there's no in-GUI license page in the cloud variant. (2) Storage is provisioned through the FortiCloud Portal rather than the GUI. (3) The Cloud Health page is replaced by a portal utilisation view. Beyond these operational distinctions, capabilities are equivalent: same UEBA, same correlation rules, same FortiGuard IoC feed, same FortiAI-Assist. The cloud variant supports India (Mumbai) as a Region A location; the on-prem variant has no such constraint because you host it yourself.
Is FortiSOAR Cloud safe for an Indian enterprise that needs in-country data residency?
Not today. The official Supported Regions documentation lists only Burnaby (Canada), Dallas (USA) and Frankfurt (Germany). If your compliance position requires data-in-India retention — which DPDP doesn't strictly require but some sectoral regulators (RBI, SEBI) increasingly prefer — FortiSOAR Cloud is not the right choice. Two alternatives: deploy on-prem FortiSOAR (VM in your own datacentre or Indian cloud region of choice), or wait for Fortinet to add an India region (no published timeline as of mid-2026). FortiSIEM Cloud, FortiSASE, and FortiAppSec Cloud all support India in-region today.
What does FortiCloud Premium actually include now?
Less than it used to. Fortinet has rolled the previously-paid FortiCloud Premium multi-tenant Organisation features into the base offering — per the FortiGate Cloud admin guide, "FortiCloud Organisation features are now available without requiring a FortiCloud Premium license." Standard accounts get up to 10 member accounts out of the box. Full functionality (advanced organisation features, MSSP-style tenant separation) now requires an FNDN subscription on the Root Account, not the legacy FortiCloud Premium tier.
What about FortiAI — can I provision a "FortiAI Cloud" tenant?
No standalone FortiAI Cloud tenant exists in Fortinet's current portfolio. FortiAI is a family of capabilities embedded across other Fortinet products: FortiAI-Protect (application visibility), FortiAI-Assist (alert triage, automated response, embedded in FortiSIEM Cloud + FortiAnalyzer Cloud + FortiManager Cloud), FortiAI-SecureAI (LLM app runtime security), FortiAIGate (LLM gateway with routing and cost control). Capabilities are delivered via continuous FortiGuard updates to the embedding products. If your interest is "AI-assisted SOC operations," the right path is FortiSIEM Cloud + FortiAnalyzer Cloud + FortiSOAR Cloud, all with FortiAI-Assist enabled — not a standalone FortiAI provisioning step.
Can I buy FortiCloud services directly from Fortinet, or do I need a partner?
You can do both. For the smallest entry points — 30-day product trials, FortiPhish trials, FortiDevSec demos, FortiCloud account creation — go direct via support.fortinet.com or the relevant product page. For paid SaaS subscriptions with multi-product scope, the partner channel adds genuine value: sizing, licensing-mix optimisation, integration design, and operational handover. For larger deployments (multi-tenant FortiAnalyzer Cloud, FortiSIEM Cloud with custom UEBA tuning, FortiSASE with sovereign-region requirements, full SOCaaS wrap), partner engagement is effectively required because Fortinet's account teams are sized for design assistance, not field implementation. Ogma is an authorised Fortinet partner across India — happy to be either path for you.
If I'm running a hybrid stack — some Fortinet appliances, some FortiCloud SaaS — does everything talk to each other?
Yes, by design. The Fortinet Security Fabric — Fortinet's name for inter-product integration — runs across both appliance and SaaS forms. FortiAnalyzer Cloud ingests logs from on-prem FortiGate appliances. FortiManager Cloud manages FortiGate appliances. FortiSandbox Cloud receives file submissions from on-prem FortiMail / FortiWeb / FortiClient. FortiEDR's cloud-managed agents share telemetry with FortiSIEM Cloud and FortiXDR. The integrations are configured per-pair (each product's admin guide documents the relevant connector) but the Fabric Connector model is uniform. For most enterprises, the practical hybrid pattern is: keep firewalls on-prem (for latency / SLA / sovereignty), move SOC / analytics / posture / app-sec / endpoint to FortiCloud SaaS, manage through the Fabric.
What's the strongest FortiCloud service to start with for an Indian mid-market enterprise?
Three honest contenders, depending on what's most painful in your current state. (a) If your team is drowning in firewall management and you have 5-30 FortiGate sites, start with FortiManager Cloud + FortiAnalyzer Cloud — high operational leverage, low risk, immediate visibility. (b) If you're in renewal cycle on Splunk, McAfee Web Gateway, or a legacy MFA tool, start with FortiSASE — replaces three or four point products in one tier and lands a measurable cost-saving line item. (c) If you're trying to build SOC capability without hiring 8 analysts, start with FortiGuard SOCaaS + FortiAnalyzer Cloud — Fortinet's analysts cover the L1/L2 layer; you (or your partner) layer the customer-facing reporting and compliance on top. None of these requires you to commit to the others — FortiCloud is genuinely à la carte.
Cited referencesSources — all Fortinet, all current
Everything in this post is grounded in Fortinet's own documentation. Below are the canonical URLs we cited. If anything on this page has drifted by the time you read it, the docs portal is authoritative.
Platform & catalog
- docs.fortinet.com/forticloud-landing — FortiCloud landing tile grid (canonical service list)
- FortiCloud Concept Guide 26.1.0 — Cloud Products and Services
- FortiCloud 26.2.0 — Getting Started with FortiCloud Services
- FortiCloud — Product Trial Subscriptions
- FortiCloud datasheet (PDF)
- FortiCloud Mgmt & Analytics Ordering Guide (PDF)
Network & SASE
- fortinet.com/products/sase
- FortiSASE doc hub
- FortiSASE Global Data Centers (India PoPs)
- FortiSASE Subscriptions / Tiers
- FortiGSLB Cloud Services
Application Security
- fortinet.com/products/fortiappsec
- FortiAppSec Cloud 26.1 User Guide
- FortiAppSec Cloud datasheet (PDF)
- FortiDevSec 24.2 User Guide
Email Security
- FortiMail Cloud product page
- FortiMail Cloud SaaS docs
- FortiMail Cloud Tenant Provisioning Guide
- FortiMail Workspace Security
Cloud Workload & Posture
- fortinet.com/products/forticnapp
- Lacework FortiCNAPP doc hub
- FortiCNAPP Getting Started
- FortiCASB doc hub
- FortiCWP doc hub
Detection & Response
- fortinet.com/products/endpoint-security/fortiedr
- FortiEDR Cloud Deployment Guide
- fortinet.com/products/fortixdr
- FortiNDR Cloud 26.2 docs
- FortiClient Cloud Deployment
- FortiSandbox PaaS Deployment
- FortiDeceptor DaaS docs
SOC Operations
- FortiSIEM Cloud Provisioning
- FortiSIEM Cloud vs FortiSIEM (differences)
- FortiAnalyzer Cloud Licensing 7.6.6
- FortiManager Cloud Limitations
- FortiSOAR Cloud Supported Regions
- SOCaaS Subscription & Onboarding FAQ
- fortinet.com/products/fortimonitor
External, brand, awareness & identity
Stay ahead of cyber threats
One short email a week — curated Indian cybersecurity news, Fortinet releases, DPDPA updates. No fluff.
