| Description | This article describes where the FORENSICS view moves in v6.2. |
| Scope | FortiEDR v6.2. |
| Solution |
In the new v6.2, the Forensics view is removed and integrated into the Investigation View. The Investigation View is available on the bottom right of the ADVANCED DATA in EVENT VIEWER.
Before v6.2, the FORENSICS view is available for both the Events and Threat Hunting pages:
In v6.2 or above, the FORENSICS View is removed and replaced with THREAT HUNTING. To view forensic-related information, select Investigation View on the bottom right of the ADVANCED DATA.
In the Investigation View, the information equivalent to the Forensics View is available.
For more information about the Investigation View, visit this administration-guide. |
