FortiSIEM provides Security Information and Event Management (SIEM) and User and Entity Behavior Analytics (UEBA)
Article Id 290137
Description The article describes how a user can sync the Instance NTP.
Scope FortiSIEM Version 6.4.0 and later.

To configure the NTP Server:

  1. Verify if the chronyd service is up and running:

    systemctl status chronyd.service

  2. Add the organization's NTP Server with the desired NTP of the instance synced in the below format by editing the file using:
    vi /etc/chrony.conf
    server <IP> iburst

  3. Restart the chronyd services:

    systemctl restart chronyd.service

  4. It is possible to verify the sync and sources by the below command:

    chronyc sources

Note that this is an OS-related configuration, for performing the above task it is possible to refer to any Linux (RHEL, Rocky Linux)OS Document.