Can I do this through a play book?

Forum|Forum|3 years ago
October 17, 2022
2 replies
952 views

Can a playbook be set up to scan for configuration changes that happen during a given set of hours?

I'm struggling to see how to set it up. I know these come through as:

Event Message: Configuration changed(Configuration is changed in the admin session)

Event Severity: alert

Event Sub Type: system

Event Type: event

I'm just not seeing how to get that granuarity into the playbook. Is there another way to approach getting notifications if logs are changed overnight?

FortiAnalyzer

Anthony_E

Staff

Hello DChaffins,

Thank you for using the Community Forum.

I will seek to get you an answer or help. We will reply to this thread with an update as soon as possible.

Regards,

Best Regards

Anthony_E

Staff

Hello DChaffins,

We are still looking for an answer to your question.

We will come back to you as soon as we get one.

Regards,

Best Regards

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded