Help
FortiAnalyzer
FortiAnalyzer can receive logs and Windows host events directly from endpoints connected to EMS, and you can use FortiAnalyzer to analyze the logs and run reports.
axel_gonzalez_FTNT
Staff
Staff

Created on ‎04-01-2022 12:00 AM

Technical Tip : Type of filters in FortiAnalyzer: 'Filter Mode' vs 'Text Mode'

Description

When using FortiAnalyzer in analytics database, the user needs to know that there are two types of search logs in log view section.

In this article, there is a difference between each other.

 

Scope

This applies for FortiAnalyzer and FortiManager in FortiAnalyzer mode.

 

Solution

Filter Mode - Allows to use the default names assigned. Example 'Device ID'.

 

axel_gonzalez_FTNT_0-1648772097881.png

 

Text Mode - Allows to use the default names assigned. Example 'devid'.

 

axel_gonzalez_FTNT_1-1648772121872.png

83

Contact Us