Could we explore the possibility of adding functionality to ingest system alerts from FortiEDR into FortiSOAR? The FortiEDR API supports reading system events, which could be leveraged for this integration.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
@gurveersingh we are already having a data ingestion to fetch events from FortiEDR and create alert in FortiSOAR
@okumbhar Currently, the connector is capable of ingesting only security alerts. Can we add the capability to also ingest system alerts, which will provide insight into component health status?
Here is the sample API endpoint to which you can query to get system events
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.