Who should attend
Anyone who is responsible for the deployment or day-to-day management of Fortinet solutions on cloud vendors should attend this course.
Prerequisites
- General knowledge of IaaS vendors
- Experience with FortiGate, FortiWeb, and Linux VMs
- Completion of the FCP - Cloud Security for AWS and FCP - Cloud Security for Azure courses or a clear understanding of network components and how to deploy resources in Azure and AWS
AWS Prerequisites:
Labs: students must have own account with:
- A valid payment method registered on the account*
- Capacity for minimum four elastic IPs and 15 vCPUs in single region
- Capacity to deploy FortiGate EC2 instances with a combined total of 10 or more network interfaces
- Capacity to deploy FortiWeb EC2 instances
- Permissions to create the following:[list[
- Minimum pf 6 VPCs and 10 EC2 instances
- S3 bucket
- CloudShell
- Security groups
- Internet and transit gateways
- Lambda functions
- IAM users with AWSMarketplaceFullAccess and AmazonEC2FullAccess permissions
[/list]
AWS Prerequisites: Labs: students must have own account with:
- Pay-as-you-go subscription with valid payment method*
- Ability to deploy FortiGate from Azure Marketplace using Bicep or Terraform
- Capacity for at least 16 vCPUs in a single region
- Capacity to deploy FortiGate VMs with a combined total of 10 or more network interfaces
- Permissions to create the following:
- App registrations (service principal) and keys
- Minimum 6 VNets
- Minimum 7 VMs with a combined total of 15 vCPUs
- The ability to do the following:
- Run Cloud Shell with storage setup
- Read the Active Directory properties and use Azure functions
- Create an IAM user with contributor, owner, and user access administrator role permissions
*Estimated lab cost/student, following all instructions, is USD $15/cloud vendor/day. Free trial will not work for some exercises.
Course Objectives
After completing this course, you will be able to:
- Describe best practices when working with cloud deployments
- Use automation tools to deploy cloud resources in AWS and Azure
- Deploy Fortinet solutions to protect IaaS deployments
- Deploy Fortinet solutions to protect CaaS deployments
- Troubleshoot cloud deployment and network connectivity issues
- Use FortiCNP to simplify risk management
Detailed Course Outline
- Cloud Security Best Practices
- Infrastructure as Code
- Securing IaaS Solutions
- Securing CaaS Solutions
- Troubleshooting
- FortiCNP Features and Use Cases
- FortiCNP Cloud Protection