Help
FortiAnalyzer
FortiAnalyzer can receive logs and Windows host events directly from endpoints connected to EMS, and you can use FortiAnalyzer to analyze the logs and run reports.
RuiChang
Staff
Staff

Created on ‎12-06-2022 10:41 PM Edited on ‎08-14-2025 05:08 AM By Community Manager

Article Id 232346

Technical Tip: FortiGate connected to FortiAnalyzer but configuration is deny

Description

This article describes that, however, FortiAnalyzer is not able to receive the log from FortiGate under the condition that FortiAnalyzer is managed by FortiManager.


FortiGate can connect to FortiAnalyzer.
Scope FortiManager, FortiAnalyzer.
Solution

Use the command below to check at FortiGate:

 

FGT# execute log fortianalyzer test-connectivity
FortiAnalyzer Host Name: FAZXXXX123
FortiAnalyzer Adom Name: test
FortiGate Device ID: FG123XXXXXX
Registration: registered
Connection: deny(configuration is denied)

 

The error indicates that FortiManager has restricted the log permissions in the device that is connected to FortiAnalyzer.

Execute the following command in FortiManager, followed by FortiAnalyzer to resolve the issue:

 

All devices:

 

execute log device permissions all all enable

 

Specific device:

 

execute log device permissions <device_id> all enable

 

Related articles:

Technical-Tip-How-to-connect-FortiGate-to-FortiAnalyzer-Cloud 

Technical Tip: FortiAnalyzer Cloud is not Receiving Logs from EMS, FortiClient and FortiMail 
1630
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.