Help
FortiAnalyzer
FortiAnalyzer can receive logs and Windows host events directly from endpoints connected to EMS, and you can use FortiAnalyzer to analyze the logs and run reports.
heng
Staff
Staff

Created on ‎08-07-2023 11:09 PM Edited on ‎08-24-2023 01:48 PM By Moderator

Article Id 267882

Technical Tip: How to locate the controller IP address of the FortiAnalyzer BigData

Description

This article describes how to locate the controller IP address of the FortiAnalyzer BigData 4500F model.

 

  • The controller is also known as Security Event Manager (SEM) controllercluster controllermain controller, or active controller
  • The main function of the controller is for the DHCP assignment, configuration management, and lifecycle management such as upgrades, resets, etc. If this host goes down, it can automatically failover to a standby controller. There are a total of 3 blades or hosts that run as controller roles, in short, 3 in total, 1 active, and 2 standby.
Scope FortiAnalyzer BigData 4500F.
Solution

Method 1: Via the FortiAnalyzer GUI:

 

Go to System Settings -> Network -> Edit port2 -> Security Event Manager IP Address/Netmask.

 

image.png

 

Method 2: Via FortiAnalyzer GUI CLI Console or SSH into FortiAnalyzer :

 

Go to System Settings and select the top-right CLI Console icon:

 

image.png

 

Type the following CLI command to display the details:

 

show system global

 

For the SSH method, SSH into the FortiAnalyzer and run the same CLI command to display the details.

 

image.png

 

Note: The above screenshots were taken in FortiAnalyzer 7.2.
1161
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.