Help
FortiManager
FortiManager supports network operations use cases for centralized management, best practices compliance, and workflow automation to provide better protection against breaches.
jasonhong
Staff
Staff

Created on ‎03-07-2022 10:17 PM Edited on ‎03-16-2022 12:22 AM By Community Manager

Article Id 206352

Technical Tip: How to send FortiManager local event logs to FortiAnalyzer

Description

 

This article describes how to send FortiManager local event logs to FortiAnalyzer.

 

Solution

 

1) User can send FortiManager local event logs to FortiAnalyzer by navigating as below.

Enable FortiAnalyzer Features on System Settings -> Dashboard.

 

fazfeature.png

 

Under System Settings  -> Device Log Settings -> Local Device Log -> Enable 'Send the local event logs to FortiAnalyzer/FortiManager' -> Enter the FortiAnalyzer 'IP Address” and set the 'Severity Level' -> Apply.

 

devicelogsettings.png

 

2) Once the changes are saved in FortiManager Device Log Settings, authorize the FortiManager in the FortiAnalyzer to allow FortiAnalyzer to start receiving logs from FortiManager.

 

auth.png

 

3) Once the FortiManager is fully authorized, user will be able to view the FortiManager local event logs under Log View.

 

logview.png

 

If the event logs are not present or properly shown under Log View, run a manual SQL database rebuild for the FortiManager ADOM via below command.

 

# exe sql-local rebuild-adom FortiManager

Labels:
1733
0 Kudos
Submit Article Idea
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.