I'm running 5.4 It just came up that any internet browsing comes up as being categorized as medium risk.
I checked and the 'HTTP.BROWSER_IE' application entry is indeed set this way by default. How can I change it?
At the bare minimum this makes my FortiGate for Splunk app much less useful.
Hello,
Unfortunately, the risk setting is not changeable now. If you have an application sensor that is set to block signatures with medium risk, you can do an Application Override by setting 'HTTP.BROWSER_IE' to "Allow/Monitor".
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.