Help
FortiGate-VM on AWS Discussions & Onboarding Information
XavierG
New Contributor

Created on ‎03-14-2025 12:17 PM

Fortianalyzer log forwarding and mTLS

Hello,

 

I am reaching out regarding the possibility of setting up syslog log forwarding from FortiAnalyzer (FAZ) or FortiManager (FAM) while implementing mutual TLS (mTLS) authentication.

 

I have reviewed the "Log Forwarding" feature available on FortiAnalyzer/FortiManager, but it does not seem to support mutual TLS authentication. My requirement is to collect logs from managed FortiGate devices and forward them securely to an external syslog server using mTLS. I am not looking to forward the local logs of the FortiAnalyzer/FortiManager itself (so the "Syslog server" functionality is of no use to me).

 

I would like to confirm whether there is any supported method to achieve this, or if there are plans to add mutual TLS support for syslog forwarding in the future. As a reference, FortiGate devices do support client certificate authentication when forwarding logs via syslog, using the following command:

 
config log syslogd setting 
set status enable 
set server <SYSLOG_SERVER_IP> 
set mode reliable 
set certificate <CLIENT_CERT> 
end 

 Would it be possible to achieve a similar configuration on FortiAnalyzer/FortiManager? If not, do you have any recommendations or workarounds?

 

Thanks in advance for your help :)

 

Best regards,

Labels:
215
0 Kudos
0 REPLIES 0
Announcements

Welcome to your new Fortinet Community!

You'll find your previous forum posts under "Forums"

Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.