One score per firewall. One score per fleet.
Firmware gap, license state, local admin accounts, VPN tunnel health, and config drift — combined into a single number you can show the client. Not a dashboard to read; a verdict to act on.
See fleet health, flag firewalls running outdated or vulnerable firmware, and push security updates across every tenant — without logging into firewalls one at a time.
Built for MSPs running 10–500 SonicWalls across 5+ tenants.

Live demo · Wayne Enterprises · 63 firewalls across the US
Firmware gap, license state, local admin accounts, VPN tunnel health, and config drift — combined into a single number you can show the client. Not a dashboard to read; a verdict to act on.
Stage canary, wave 1, wave 2 per tenant. Health-checks between waves; auto-pause on failure with rollback armed. Schedule for 2am, sleep through it.
Block-Outbound-RDP, MFA-Required, GeoIP-Block — write once, fan out to selected tenants. Diff first, push second, rollback always one click away.
AES-256-GCM vault per tenant, 5-role RBAC with team isolation. Sessions launch behind a one-time grant — the credential never leaves the server. SOC 2-grade audit trail, immutable and exportable.

Find what changed between last Tuesday and this morning. Restore the one VLAN that broke without rolling back the seven that didn't.
→ /fleet/backups
Primary, secondary, LTE failover — link state across the entire fleet at a glance. Failovers logged, throughput trending, last 90 days for free.
→ /network/wan
Outage timeline grouped by carrier. Spectrum dropping packets in Denver shows up as one pattern across nine tenants — not nine separate tickets.
→ /isp
Firmware, backups, policies, settings, vault grants — one signed timeline. Filter by user, tenant, device; export the answer your client's auditor wants.
→ /audit?range=30dDevices auto-import from IT Glue. Changes you make in SonicSaaS sync back within 30 seconds. Interfaces, VLANs, VPN tunnels, policies — docs stop drifting from the thing they describe.
Agreement scanning, company sync, product mapping, and automated tickets from fleet events. Firmware skipped a wave? Ticket. License expiring? Ticket. ISP flapping? One ticket, not nine.
Plus IT Glue passwords, ConnectWise companies, and your existing tenant taxonomy — all imported on day one.
SonicSaaS reads the firmware version from every firewall in your fleet and flags the ones behind the recommended SonicOS release or affected by a published security advisory — so you see your exposure across all tenants on one screen instead of logging into each device.
Stage firmware in waves — canary, then wave 1, then wave 2 — per tenant, with health checks between waves and automatic pause-and-rollback on the first failure. Schedule it overnight and review the results in the morning.
Automated checks scan every firewall for outdated firmware, missing or expired licenses, risky local admin accounts, and policy drift, then roll the results into a single health score per firewall and per fleet. Every check and change is recorded in an immutable, exportable audit trail.
Yes. SonicSaaS is multi-tenant by design — each client's firewalls, configs, and credentials are isolated, and your team gets role-based access across the whole fleet from a single login. It's built for MSPs running 10–500 SonicWalls across many tenants.
SonicSaaS works with SonicWall Gen 6 and Gen 7 appliances across 50+ API endpoints, covering fleet management, firmware tracking, configuration backup and restore, and security audits.
Five minutes in the live demo and you'll know whether this belongs in your stack.