Help
FortiAppSec Cloud
FortiAppSec Cloud delivers unified application security and performance with WAF, bot protection, GSLB, DDoS mitigation, threat analytics, and CDN.
gsharma
Staff
Staff

Created on ‎10-08-2025 11:32 PM Edited on ‎10-15-2025 04:09 AM

Article Id 414448

Technical Tip: Integrate FortiAppSec cloud with Splunk Server using SSL protocol

Description
This article describes how to integrate FortiAppSec cloud with Splunk Server using the SSL protocol for secure connectivity.
Scope FortiAppSec Cloud.
Solution
  • To integrate FortiAppSec cloud with Splunk Server using SSL protocol for secure connectivity, log in to the FortiAppSec portal: https://portal.appsec.fortinet.com/
     
  • Once on the portal, select 'General', enable the Audit Logs Export tab, and select server type as Syslog.

pic1appsec.jpg
 
Set the Log format as Splunk to support connectivity.

pic2aapsec.jpg
 
  • Under the protocol, use the  SSL protocol and enter the Splunk IP address and port defined on the Splunk server for connectivity.
  • After enabling SSL, there are 2 options available:
    • Server Certificate Verification.
    • Custom Certificate and Key.
  • By default, these options are disabled, but can be enabled if required.
  • After the configuration is done, select the TEST button to ensure the connection. Once the test shows success, then SAVE the config.


pic3appsec.jpg

Note:

Test the server configuration before saving the settings.

Related document:

Using WAF with Splunk
65
0 Kudos
Suggest New Article
Article Feedback
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.