What Is TOS Aurora?

TOS is Tufin Orchestration Suite, a software solution that helps you orchestrate your network policy. TOS Aurora supersedes TOS Classic which reached EOL in 2023. TOS Aurora helps organizations with complex and hybrid networks to stay on top of their network security posture through monitoring the security policy of the firewall devices, security groups and other security controls across the corporate network, visibility through topology maps, browsers and queries and workflow-based change management and automation.

Supported Platforms

AWS
Azure
Check Point
Cisco
F5
Forcepoint
Fortinet
GCP
Juniper
Palo Alto
VMWare NSX
ZScaler

Primary Features

Network Policy Monitoring and Visibility

TOS Aurora knows the security policy of all the devices in your network and keeps track of every change. With this information you can compare different versions of the policy for each device. TOS creates an interactive topology map that lets you visualize the network and lets you execute path queries from one location in your network to another. You can segregate your network into logical subnets or zones and you can create one or more USPs (Unified Security Policies) that consist of zone matrixes in which you can map the traffic permissions between them that you expect your firewalls to comply with. A central feature in TOS is The Rule Viewer, a browser that contains all current rules from all devices, and allows to freely query rules on almost any property and create various change tickets from query results.

Compliance

TOS includes predefined USPs that represent various standards and regulations such as PCI-DSS. and violations of these 'master policies' appear in dashboards and reports and can trigger notifications.

Change Management and Automation

SecureChange is the built-in ticketing system of TOS. It is comprise of customizable workflows for implementing changes in network security, with various levels of automation from manual to for zero touch, including suggestions for rule changes on one or more firewall devices, provisioning and rechecking access paths after implementation. Application-level permissions can be implemented for a more granular security policy.

Extensions and Customizations

A selection of free extensions is available for TOS that provide added functionality such as enhanced reporting capabilities, rule lifecycle management and security policy design tool. There is also the option to purchase custom integration of devices that are not supported out of the box. This is made possible by Tufin's proprietary device architecture, OPM (Open Policy Model).