Description | This article describes how to check/filter configuration changes logs. |
Scope | FortiGate. |
Solution |
It is possible to filter the log to check what objects/settings were configured or changed.
In the log, it is possible to check more about this configuration change.
This particular log was about the change in the static route entry number 2, where the interface was changed from internal1 to default. The change was done in GUI by the user admin. If the change was made in the GUI console, the user interface would be listed as 'jsconsole'. If the change was done via SSH session, the user interface would be listed as 'ssh'.
If there is a change in the hostname, the log would be filtered as below.
Filter Field: Log Description = Global setting changed.
It is also possible to create an automation stitch to get the alert/summary of configuration changes: Technical Tip: Using Automation Stitches to produce a summary of Configuration Changes
Related srticle: |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.