Syslog is the only supported method of FortiADC integration with FortiSIEM as per the external system configuration guide. So, pulling configuration information using SNMP for FortiADC devices may not be possible currently.
When I test credentials I get SSH failed (Host key verification failed). But discover is successful. I have to login to FortiSIEM Supervisor SSH and follow the steps mentioned in the KB Article "Technical Note: [Accelops KB] How to reset SSH key" to clear SSH key cache.
It helped so much and solved several problems.
I found the name for FortiGate is "_gateway". When I changed the name to FortiGate, The configuration data on FortiSIEM disappeared. I realized that there is a relation between the name and the configuration. I did rediscover for another IP addresses and found the name is displayed connected to the domain name. I did edit the name by adding the domain name and the configuration for both IP addresses is updated.
You gave me an idea to sole a problem I have. I have FortiWeb cluster managed by the MGMT interface. when they change the active one, I get two FortiWeb devices in FortiSIEM CMDB with the same IP. I plan to add a host in the file so they are one.
Another thing I try to go through. I try to make FortiADC managed by SNMP from FortiSIEM. I did snmp walk from FortiSiem for FortiADC. In Admin>Device Support>SNMP SysObjectId, I added my FortiADC.
I have security audit and as-built document preparation. Tese will delay me now.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.