I could not find any of the below using the System Event Category = 2
Query. Filters: Select the attribute that identifies the Windows Agent
heartbeat log. In FortiSIEM’s Event Type browser, find the event type
for the agent heartbeat. For example, F...
Hello, .Not sure how to set up the rule itself, is it even possible? Our
clients are not always aware when the agents stop reporting and then we
wind having to tell them its been disconnected for 2 weeks we have 100+
agents between all our clients we...
Hello, I need the steps to setup the end point devices for first time
installs and also to accept updates of Windows Agents I have SIEM 7.1.3
and SIEM 6.7.9 I need steps to run on the clients end points to accept
agent install/upgrades via SIEM GUI w...
Hello. Need more help please.. thank you as per usual on 6.7.9
SupervisorDir/opt/phoenix/WinAgentUpgrade/ shows these two
files/opt/phoenix/cache/installedimages/windowsagent/FSMLogAgent.exe/opt/phoenix/WinAgentUpgrade/FSMLogAgent.exe[root@orgsiem01
...
HI all, I have not yet had the pleasure of working with phCheckpoint Is
it needed on a 7.1.3 Collector talking to a 7.1.3 SIEM? are there any
cases it can be ignored? How can I get it going? and why does it not
start? which logs will yield the answer...
ok what about this consideration ? The agents are old. WindowLogAgents
4.1 or possibly some other 4.x Please confirm if this needs to be dealt
with first is this an impedance? 1) do I upgrade first to 7.1.11 to
maintain version alignment with SIEM 7....
yes thank you I already have this noted and logged and have been doing
exactly that for the past 4 or 5 months This is an old problem and has
been resolved,
Hello the only solution is to go to the customers collector and run the
commands to fix permissions and prepare the /opt/upgrade directory.Per
Slav here at Fortinet Edit the /etc/hosts file and make sure an entry is
in.162.244.152.70 siem.grncld.com#...
Thank MZBZ, 1) No need for a software inventory. We just need it to stay
connected. 2) Why does it check three times in one day? it says no
response. I don't need it do anything accept stay connected to the
endpoint gateway. What is it updating and w...
NEW TITLE: 7.2.4 Agent on RHEL 9.4 using SELinux, via Proxy on 7.2.2
Collector is not seen by SIEM 7.1.3 (shows Disconnected) Thanks AEK! ,
yep I am a long time OpenSUSE guy as well. Well it turns outProblem: The
Agent does install, The SIEM does not...
