WMI/OMI Integration

Forum|Forum|1 year ago
February 23, 2025
1 reply
488 views

Hello,

We have followed the WMI/OMI Steps to integrate with FortiSIEM to receive the Security, System, and Application Logs.

we received the Performance logs Only, how we can receive the security logs?

AliMhaerFathyAuthor

Explorer

I tried this form Supervisor CLI:
/opt/phoenix/bin/omic -s /opt/phoenix/config/smb.conf -U 'User%Password' //IP 'SELECT * FROM Win32_NTLogEvent WHERE Logfile = "Security" AND TimeGenerated >= "20240222000000.000000+000"'

and it retrieved the security logs fine, but the integration couldnt recieve them?

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded