Help
FortiSIEM Discussions
AliHaider
New Contributor

Created on ‎02-20-2022 01:31 AM

Pull events from sftp directory/path

Hello,

is there any guide on how to setup scheduled event pulling from a sftp server directory or path?

currently FortiSIEM is able to log in to the sftp from cli with the provided username and password. 

I can also successfully add credentials from the GUI. However, after this I am a bit lost.
Do i need to create a script and import the daily csv file?
what other ways are possible?

Edit 1: we are running 5.3.1

494
0 Kudos
2 REPLIES 2
SimonMonai
New Contributor

Created on ‎02-22-2022 12:40 AM

Hi Ali

What is the reason that you would like to poll the files instead of pushing them in regular intervals? I am thinking of installing the FortiSIEM agent configured to load a specific log file. 

Regards
Simon-------------------------------------------
Original Message:
Sent: Feb 20, 2022 01:30 AM
From: Ali Haider
Subject: Pull events from sftp directory/path

Hello,

is there any guide on how to setup scheduled event pulling from a sftp server directory or path?

currently FortiSIEM is able to log in to the sftp from cli with the provided username and password. 

I can also successfully add credentials from the GUI. However, after this I am a bit lost.
Do i need to create a script and import the daily csv file?
what other ways are possible?

Edit 1: we are running 5.3.1

494
0 Kudos
DanielHanman
Staff
Staff

Created on ‎02-23-2022 02:26 PM

Hi Ali,

Which integration are you trying to use?

Thanks


------------------------------
Daniel
FortiSIEM Product Manager
------------------------------
-------------------------------------------
Original Message:
Sent: Feb 20, 2022 01:30 AM
From: Ali Haider
Subject: Pull events from sftp directory/path

Hello,

is there any guide on how to setup scheduled event pulling from a sftp server directory or path?

currently FortiSIEM is able to log in to the sftp from cli with the provided username and password. 

I can also successfully add credentials from the GUI. However, after this I am a bit lost.
Do i need to create a script and import the daily csv file?
what other ways are possible?

Edit 1: we are running 5.3.1

494
0 Kudos
Announcements

Welcome to your new Fortinet Community!

You'll find your previous forum posts under "Forums"

Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.