Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
mike-norrkoping
New Contributor

Created on ‎04-14-2023 04:30 AM

FortiSIEM log normalization

As we're expanding the use of our FortiSIEM, we've realized that not all logs are normalized properly, completely or in some case not at all. As we're fairly new to FortiSIEM, we're trying to figure out how to approach this - if we need to create our own normalization packages, if we can request them from Fortinet, if there are vendor-specific packages that can be requested or downloaded somewhere?

 

If we need to create our own, are there tools or do we copy an existing package and start working out what's what in the log we want to normalize?

Mike-Norrkoping
Mike-Norrkoping
Labels:
1209
0 Kudos
3 REPLIES 3
Anthony_E
Community Manager
Community Manager

Created on ‎04-16-2023 09:32 PM

Hello Mike,


Thank you for using the Community Forum. I will seek to get you an answer or help. We will reply to this thread with an update as soon as possible.


Thanks,

Anthony-Fortinet Community Team.
1185
Anthony_E
Community Manager
Community Manager

Created on ‎04-19-2023 10:45 PM

Hello Mike,

 

We are still looking for someone to help you.

We will come back to you ASAP.


Regards,

Anthony-Fortinet Community Team.
1159
0 Kudos
gfleming
Staff
Staff

Created on ‎04-20-2023 09:09 AM

Here's some info on how to create your own parsers: https://help.fortinet.com/fsiem/6-7-4/Online-Help/HTML5_Help/Configuring_parsers.htm

Cheers,
Graham
1150
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.