FortiAnalyzer
FortiAnalyzer can receive logs and Windows host events directly from endpoints connected to EMS, and you can use FortiAnalyzer to analyze the logs and run reports.
heng
Staff
Staff
Article Id 267882
Description

This article describes how to locate the controller IP address of the FortiAnalyzer BigData 4500F model.

 

  • The controller is also known as Security Event Manager (SEM) controllercluster controllermain controller, or active controller
  • The main function of the controller is for the DHCP assignment, configuration management, and lifecycle management such as upgrades, resets, etc. If this host goes down, it can automatically failover to a standby controller. There are a total of 3 blades or hosts that run as controller roles, in short, 3 in total, 1 active, and 2 standby.
Scope FortiAnalyzer BigData 4500F.
Solution

Method 1: Via the FortiAnalyzer GUI:

 

Go to System Settings -> Network -> Edit port2 -> Security Event Manager IP Address/Netmask.

 

image.png

 

Method 2: Via FortiAnalyzer GUI CLI Console or SSH into FortiAnalyzer :

 

Go to System Settings and select the top-right CLI Console icon:

 

image.png

 

Type the following CLI command to display the details:

 

show system global

 

For the SSH method, SSH into the FortiAnalyzer and run the same CLI command to display the details.

 

image.png

 

Note: The above screenshots were taken in FortiAnalyzer 7.2.