|Description||This article describes how to use the Email Notification Service (listener based ingestion) of the Exchange connector.|
|Scope||FortiSOAR Exchange Connector.|
The Email Notification Service (Listener based ingestion) is a service which allows users to trigger ingestion of unread emails from a specific folder as soon as they hit the mailbox.
To configure it:
2) Make sure the folder intended for monitoring has at least one unread email.
3) Select the folder from the drop-down menu (or enter the folder name in the Source field if a custom folder is in use) and select fetch data.
4) Once data has been fetched, add or edit mapping as appropriate, select next. Do not schedule the ingestion. After, select next.
Note - Playbook links can be seen on the summary page. Optionally, open the ingest playbook in a new tab.
5) Save the data ingestion settings.
6) On the exchange connector configuration page, select the 'Enable Email Notification Service' checkbox.
8) Add a custom listener port (or keep the default).
9) Fill in the 'Playbook Trigger' field. This field specifies the API trigger of the 'Ingest' playbook from the respective ingestion collection.
10) Save the configuration.
1) Check whether tbe listener has started on a specific port with the following command:
2) Update the log level of listener in notify_email.py.
In FortiSOAR version 7.3.0 or above:
In version 7.2.2 or below:
After, save the file and restart uwsqi:
3. Check listener logs. Listener logs provide details such as the following:
- Whether the listener is still active. The per minute logs will be visible in the below log file if so.
- Which folder the listener is monitoring
- A count of unread emails
Log file location:
Multiple Configuration Support
This will ensure every configuration will trigger the separate ingestion playbook.
Open the ingestion playbook of the config1 collection.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2023 Fortinet, Inc. All Rights Reserved.