Hello everyone,We’re currently trying to improve our visibility into
offline devices in FortiSIEM, specifically in cases where agents or
devices silently stop sending logs.So far, we’ve tested a few approaches
for alerting:Rules using Followed By / N...
Hey,Thank you very much for this extensive help.I will test out the
Queries. In the mean time I found out how to set the treshold for the
Internal Log Delay Events thus having a Incident as well. Important Logs
By Use case | FortiSIEM 7.3.0 | Fortine...
@cdurkin_FTNT Hey, thank you very much for this Information. I am
Interested in the 3. and 4. Query. My Issue is that I want this report
for all devices in the CMDB. When using the Nested Query Report you
showed me it looks like it is working. Issue ...
