Cloud NGFW for AWS
Cloud NGFW for AWS Subscription and Billing
Table of Contents
Cloud NGFW for AWS Subscription and Billing
| Where Can I Use This? | What Do I Need? |
|---|---|
|
|
Cloud NGFW Tenant
When you create the first Cloud NGFW resource in the Strata Cloud Manager,
the platform automatically creates a Cloud NGFW tenant and links it with Strata
Cloud Manager. This Cloud NGFW tenant remains dedicated to the Strata
Cloud Manager.
AWS Marketplace Billing Association
As discussed above, you can generate a billing code in the SCM console for
an AWS account and then use it when you subscribe from the same account in AWS
Marketplace. This action establishes the PAYG billing link, enabling metering
records to be sent from Cloud NGFW to the AWS Marketplace Metering Service. Your
Cloud NGFW resources remain intact during this transition.
If you would like to subscribe using a different account for billing
purposes, you can repeat the above process and generate a billing code for another
AWS account and then use it when you subscribe from the corresponding AWS account in
the AWS Marketplace. When you subscribe from a second AWS account to the same
SCM, the platform replaces the currently established billing link with this
newly subscribed account. It dynamically selects the new subscribed account for
sending metering and overage records. You can then go ahead and unsubscribe from the
original AWS account. Your Cloud NGFW resources remain intact during this
transition.
If you unsubscribe from the currently subscribed PAYG account used
for billing and have not added Cloud NGFW credits to your Cloud NGFW tenant, the
platform will delete all your Cloud NGFW resources.
AWS Marketplace Billing Aggregation
You may use multiple Strata Cloud Managers in your environment to meet your
governance model or regional presence. When this is the case, it becomes necessary
to create Cloud NGFW resources independently for each Strata Cloud Manager.
This distributed approach necessitates a repetition of certain critical
steps for each Strata Cloud Manager. Specifically, you will need to:
- Generate a Billing Code within each SCM Console: This involves navigating to the administrative interface of each Strata Cloud Manager and following the procedure to generate a unique billing subscription code. This code is essential for linking the SCM to AWS Marketplace for billing purposes.
![]()
- Establish a Billing Link to AWS Marketplace: After generating the billing code, you establish a billing link for each SCM using your AWS Marketplace account:
- Click Set up your Account to go to the Quick Launch
page.
![]()
- You are redirected to Quick launch page of your relevant product listing in AWS Marketplace.
- Click Link a different account.
![]()
- Select the option I have an SCM Billing Subscription Code.
- Accurately enter the unique billing code previously generated in the
respective SCM and click Continue.
![]()
- Click Set up your Account to go to the Quick Launch
page.
Following these steps initiates the linking process using the previously
established AWS Marketplace subscription. Upon successful completion of the billing
link, the workflow will automatically redirect you back to the Strata Cloud Manager
console, confirming the integration. This process ensures that billing for Cloud
NGFW resources deployed through each specific Strata Cloud Manager is correctly
associated with the appropriate AWS Marketplace account.
In this case, if you unsubscribe from the currently subscribed
account used for establishing billing links with multiple Strata Cloud Managers and
have not added Cloud NGFW credits to your Cloud NGFW tenant, the platform will
delete all your Cloud NGFW resources in all the associated Strata Cloud
Managers.
Credit Management
Optionally, you can purchase and activate Cloud NGFW Credits, then
associate them with each Cloud SCM/Cloud NGFW tenant. From then on, the
platform continuously validates usage against your credit allocation on each SCM. If
consumption exceeds your allocated credits, the platform calculates overages and
sends PAYG metering records to AWS Marketplace. If your credits expire, the Cloud
NGFW platform automatically and seamlessly switches to your active AWS Marketplace
subscription for Pay-As-You-Go billing. Your Cloud NGFW resources remain
intact during these transitions.