GATEKEEPER audits firewall rules, DNS posture, certificates, GPOs, service accounts, and secret rotation across Azure. The control plane that Tufin, AlgoSec, and FireMon charge Custom to Custom to manage. Included in Cloud Pro and Government tiers. Contact sales for standalone pricing.
Firewall sprawl, certificate expiry, stale service accounts, and over-privileged GPOs are the slow leak that compounds breaches. GATEKEEPER audits all of it on a schedule and flags drift the moment it appears.
Azure NSGs. Public-internet exposure flagged, redundant rules consolidated, drift from baseline reported.
Every certificate inventoried, every DNS record audited for ownership and SPF / DKIM / DMARC drift. Expiry alerts fire 60, 30, 7 days out.
Stale service accounts, GPOs missing from the baseline, RBAC role drift across clouds. Ninety-day inactivity threshold by default.
Azure Key Vault. Per-secret last-rotation timestamp, recommended rotation cadence, automated rotation playbook on consent.
Read-only scan. No credit card. Full evidence pack on every finding.