Hello There,We are trying to run a playbook to extract pdf files and
upload them as a attachment.Extraction seems to work fine but we end up
getting a error on the upload.Following is the error in the UI.\n
CS-INTEGRATION-5: Error occurred while exec...
Hello everyone,We’re currently trying to improve our visibility into
offline devices in FortiSIEM, specifically in cases where agents or
devices silently stop sending logs.So far, we’ve tested a few approaches
for alerting:Rules using Followed By / N...
Solution Found.It is a apparend Bug in FortiSOAR 7.6.4 that the
Restricted Mime Type Setting needs to be filled and cannot be empty. Bug
Report was opend on a seperate Channel.
Hey KT,You might want to have a look at Solved: FortiSIEM // Incident
generation for offline Devic... - Fortinet Community You might be able
to use queries from there to check for devices sending or not sending
logs.Otherwise you could build a detect...
Hey,Thank you very much for this extensive help.I will test out the
Queries. In the mean time I found out how to set the treshold for the
Internal Log Delay Events thus having a Incident as well. Important Logs
By Use case | FortiSIEM 7.3.0 | Fortine...
@cdurkin_FTNT Hey, thank you very much for this Information. I am
Interested in the 3. and 4. Query. My Issue is that I want this report
for all devices in the CMDB. When using the Nested Query Report you
showed me it looks like it is working. Issue ...
