Hi Community, Recently our FortiSIEM is flooded every 2 seconds with
"System user account locked due to excessive login failures" by user
SYSTEM(su). Which generates an Incident that locks out the user... The
Short Process Name is AppServer but the r...
Hi Community, In FortiAnalyzer: is it possible to generate a report that
shows me license information from for example FortiGate using a custom
dataset? Info like "about to expire licenses" from all FortiGate
devices. Also things like you can get fro...
Hi Community, In FortiSIEM 7, is there a possibility to delete a case
and the references? On the FortiSIEM Dashboard under Cases, a case has a
Ticket_ID and Incident_ID.In my example, I have a 1 Incident_ID 121212
which links to 3 Ticket_ID's 3308671...
We are trying to authenticate a wireless client using EAP-TLS on a
Meraki AP against a FortiAuthenticator (with RADIUS).The EAP-TLS is
successful but the wireless client doesn´t receive a DHCP IP address,
nor does it have network access. However, a w...
Hi AEK, Excellent, thanks! That's a very good approach on getting the
actual SQL query! :) I do get some "SQL query is forbidden." in certain
queries, not sure why. For example my query in Chart Builder is:select
`level`, `devid`, `devname` from $log...
Hi PartBhat, I can understand this point of view - thank you. :) Let me
ask it in another way: is there a database command that can cleanup
orphaned records and/or shrink the database?I'm asking because our
misconfiguration unfortunately resulted in ...
You will probably notice that the "Issue Type" under Integration Policy
-> Field Mapping is greyed out.If that's the case, please create an API
token at https://id.atlassian.com/manage-profile/security/api-tokens
Copy the API token code after you cre...
After multiple support calls with Fortinet and Meraki in the same call,
the Meraki engineer concluded that this wasn´t an authentication
issue... she asked us to disable 802.11r on the SSID and after that,
RADIUS authentication worked instantly! Also...
We made some progress after switching the RADIUS ports 1812/1813 instead
of 1645/1646. Also we´ve changed the Framed-MTU to 1200 in the
Access-Accept resulting in Accounting-Request packets shown in the
Packet Capture... however, no Accounting-Respon...
