Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
U_shah
New Contributor

FortiEMS security Logs to Third Party SIEM

Hi,

 

Is there a possibility to send Forticlient logs mostly security and system events that are fetched by FortiEMS to a third party SIEM.Right now, the only option I see is to send FortiEMS Event logs to Syslog. We dont have the SIEM on a public IP and thus require FortiEMS to be the mediator as it already collects these logs for its dashboard.

2 REPLIES 2
ebilcari
Staff
Staff

It seems that FCT EMS cannot be used to forward FCT events via syslog. FortiAnalyzer can serve as a collection point for FCT events and then forward that information to a 3rd party SIEM.

- Emirjon
If you have found a solution, please like and accept it to make it easily accessible for others.
U_shah

We dont have a FortiAnalyzer. Sad that there is a dependency on 3rd product.

Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors