Troubleshooting Tip: Fixing empty data on FortiWeb Cloud Threat Analytics Dashboard
| Description | This article describes how to resolve the issue of missing data on the FortiWeb Cloud Threat Analytics Dashboard. |
| Scope | FortiWeb. |
| Solution | Threat Analytics uses machine learning algorithms to identify attack patterns across application assets, aggregate them into security incidents, and assign severity. This feature separates real threats from informational alerts and false positives to prioritise critical threats.
The FortiWeb Threat Analytics dashboard is accessible at https://appsec.fortinet.com/. Use the credentials associated with the registered FortiWeb licenses to log in.
Steps to verify configuration:
The Threat Analytics Dashboard should begin populating data.
Network Connectivity: If data remains unpopulated after performing the steps above, ensure the following FQDN/Ports are reachable from FortiWeb:
b-1-public.produseast1mskcluster.vbr44g.c24.kafka.us-east-1.amazonaws.com:9194
Debugging: If the issue persists, collect the following debug logs and attach the outputs in a FortiWeb support ticket at the Fortinet Support portal :
diagnose system threat-analytics info diagnose debug application logd 7 diagnose debug enable
Capture the logs for 3-4 minutes. Use the following command to stop the debug:
diagnose debug disable
Related article: Analyzing attack logs in FortiWeb Cloud Threat Analytics |