Four stages.
One appliance.
Redoubt Auditor deploys in stages designed to match the operational maturity of your security team. Each stage compounds the value of the last — and each can be adopted independently.
Assessment
Baseline Establishment
Redoubt Auditor ingests configuration from every FortiGate via secure API. It validates against the CIS FortiGate Benchmark, catalogs firmware and CVE exposure, and audits policy hygiene.
- Automated config extraction (FortiManager-integrated)
- CIS Benchmark Level 1 & 2 validation
- CVE correlation against installed firmware
- Shadow, redundant, and any-any rule detection
- VPN/IPsec algorithm strength assessment
Intelligence
On-Premises AI Analysis
An on-device Llama 3.1 model (Meta, US-origin) enriches every finding with context, remediation guidance, and priority. A curated knowledge base of Fortinet PSIRT advisories and regulatory frameworks is indexed locally.
- Llama 3.1 8B running local — zero external inference
- RAG index: CIS, Fortinet Hardening, PSIRT, NIST 800-53
- Natural language findings in English & Spanish
- Remediation scripts tailored to your config
- No API keys. No cloud. No data egress.
Portal
Continuous Visibility
A secure on-premises web portal presents executive dashboards and drill-down technical views. Real-time fleet posture, device-level state, drift detection, and historical compliance trending.
- Executive dashboard: red/amber/green per device
- Drift detection: baseline vs. current state
- 12+ month historical compliance retention
- Remediation tracking with SLA enforcement
- Board-ready PDF exports, bilingual
Automation
Integration & Orchestration
Connect Redoubt to existing ticketing, SIEM, and change management workflows. Auto-generated remediation scripts (with human approval), scheduled reports, and critical alerting via your SMTP relay.
- ServiceNow / Jira ticket generation
- SIEM log forwarding (syslog, CEF, LEEF)
- Proposed remediation with approval gates
- Scheduled executive reports
- Critical alerts via your email relay