Help
FortiSIEM Discussions
nisse
New Contributor II

Created on ‎07-08-2024 04:50 AM

LDAP sync moving "FortiSIEM Analysts" (7.2.0)

With the case revamp on fortiSIEM 7.2.0, there was a need to have users in the "FortiSIEM Analysts", which seemed to work fine. Until the group was magically empty after a while.

 

It seems that our scheduled discovery for LDAP are moving users back from the builtin group "FortiSIEM Analysts" to the group created by discovery (see image below).

 

Screenshot_20240708_134825.png

Is this fixable, or is the workaround just creating local users so that cases can be created?

Nisse
Nisse
Labels:
146
0 Kudos
1 REPLY 1
premchanderr
Staff
Staff

Created on ‎09-26-2024 10:35 PM

Hi @nisse ,


This is by design and currently no workaround . The AD user would be removed from FortiSIEM Analysts group even if you move manually upon re-discovering. 

 

Regards,
Prem Chander R
58
0 Kudos
Announcements

Welcome to your new Fortinet Community!

You'll find your previous forum posts under "Forums"

Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.