Description
This article describes a method to configure FortiSIEM Email notification with a Gmail SMTP server.
Scope
FortiSIEM.
Solution
FortiSIEM provides an email notification feature to send incidents or reports to users. Users will need to configure an SMTP server to send the email. Some users are using public SMTP servers and face challenges due to 2-factor authentication. As FortiSIEM is not designed to authenticate for 2-factor authentication, the test email will fail with the error 'Test Email Server : smtp.gmail.com fail, Authentication Failed: Invalid username or password':
From the backend, users are able to search for details on the error:
cat /opt/glassfish/domains/domain1/logs/phoenix.log |grep smtp
The 'InvalidSecondFactor' indicates the 2-factor authentication is failed. In that case, users can try the solution below:
- Go to Gmail account -> Security -> 2-Step Verification -> Disable the feature.
- Go to Gmail account -> Security -> App Password -> Create new App Password -> Copy the 16-digit code -> Apply it on FortiSIEM Email setting configuration.
Notes:
The 16-digit App password from Google Account is filled in without the space.
Related document:
