Help
FortiSIEM Discussions
cheerio
New Contributor

Created on ‎01-27-2025 11:03 AM

How Can I Detect Devices Not Logging/Reporting

What is the best course of action to detect devices not properly logging?

Example: If a new device is added to an environment and sends an initial log, but another log isn't sent another 24 hours, will an alert generate?

 

Also, for devices that are currently stopped logging, what would be the best course of action to capture that info?

Labels:
262
0 Kudos
1 REPLY 1
premchanderr
Staff & Editor
Staff & Editor

Created on ‎01-28-2025 09:59 PM

Hi @cheerio ,

 

You can use CMDB > CMDB Report "Device Monitoring Errors" - This reports devices whose performance / availability monitoring status is Warning or Critical . 

 

Additionally look out for CMDB Reports > Device Event Collection Status , Device Event Collection Errors etc

Regards,
Prem Chander R
231
0 Kudos
Announcements

Welcome to your new Fortinet Community!

You'll find your previous forum posts under "Forums"

Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.