Help
FortiAnalyzer
FortiAnalyzer can receive logs and Windows host events directly from endpoints connected to EMS, and you can use FortiAnalyzer to analyze the logs and run reports.
psalian
Staff
Staff

Created on ‎08-30-2018 05:09 AM

Article Id 192587

Technical Note: How to add a third party device to FAZ (syslog server)

Description

The article describes the steps on how to add a third party device to FAZ where FAZ is the syslog server.



Solution

We cannot add a third party device directly from FAZ into the syslog ADOM.

This is due to the way the serial number is stored under syslog ADOM. If the device is added from FAZ, FAZ would not recognize the serial number and would give an error as: 

The device's serial number does not match database

Steps to add the device to FAZ

  1. On the Third party device, add FAZ as syslog server. Configure it to send logs to FAZ 
  2. On FAZ, the device will show up under unregistered devices. 
  3. Right click on it and promote it and add it under Syslog ADOM 
  4. Enter Syslog ADOM and you should see the device added in there.



Related Articles

Technical Note: How to add a third party device to FortiAnalyzer

10293
0 Kudos
Submit Article Idea
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.