Technical Tip: How to create Event Handler for FortiAnalyzer Local Events

This article describes how to create an event handler based on FortiAnalyzer’s Local Event Logs to alert the network admin. In this example, the event handler will send an alert email to the network admin if FortiAnalyzer do not receive logs from FortiGate devices.

1) Configure SMTP server under System Settings -> Advanced -> SMTP Server and test validity

2) Go to System Settings -> Event Log and search for ‘Warning’ Level log, with description “Device Offline”