During a recent VAPT security scanning, TCP port 514 was flagged out to be have weak SSL cert.
The recommendation was to get a propert SSL certificate for the appliance.
Can we disable port 514 on the Analyzer ?
my firmware version is 6.4.10. will upgrade to version 7.2 soon.
Contact the Certificate Authority to have the certificate reissued. |
Purchase or generate a proper certificate for this service. |
Solved! Go to Solution.
You can generate a certificate via Let's Encrypt for example, and use that instead (replace the server certificate in FortiAnalyzer system settings):
-> the guide is for FortiGate, but generating the certificate is very similar on FortiAnalyzer
TCP port 514 on Fortianalyzer is used by fortigates to connect and send logs, unfortunately we cannot disable that.
https://docs.fortinet.com/document/fortigate/6.4.0/ports-and-protocols/766616/fortianalyzer-open-por...
You can generate a certificate via Let's Encrypt for example, and use that instead (replace the server certificate in FortiAnalyzer system settings):
-> the guide is for FortiGate, but generating the certificate is very similar on FortiAnalyzer
Hello guys!
I'm trying to understand why my hosts conected to fortiEMS keep sending this logs to Fortianalyzer.
Can someone help me understand that, please!?
Hello @Edu_Master ,
If you configured "Upload Logs to FortiAnalyzer/FortiManager" in the endpoint profiles-> system settings. Your client wants to send their log to Fortianalyzer.
You can find more information about in this link.
https://docs.fortinet.com/document/forticlient/7.2.4/ems-administration-guide/107284/system-settings
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1740 | |
1108 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.