Description This article describes how to investigate if FortiSIEM
Windows Agent spikes high CPU utilization on Windows servers. Scope
Windows Agent v4.4.x, v5.x, v7.x.x, v7.1.x, v7.2.x. Supervisor and
Collector v6.x, v7.x, v7.1.x, v7.2.x. Solution V...
Description This article describes how to create an API Call using
Utilities Connector to list all values of a picklist. Scope FortiSOAR
v7. Solution Sample output: System Picklist AlertState should list all
the values New, Detail Extracted, Indicato<!-- --><!-- -->...
Description This article describes how to install Network Monitoring
Tools, Antivirus, or any other software on FortiSIEM. Scope FortiSIEM
v6.x+. Solution This action is not recommended and would put the
Supervisor/Collector in an unsupportable state...
Description This article describes how to switch to a custom parser if
SyslogNGParser is used for parsing logs or testing sample events. Scope
FortiSIEM 7.x. Solution SyslogNGParser is the default system parser. It
is always the first one and is desi...
Description This article shows how to perform initial level
troubleshooting of Node.js-charting process. Scope FortiSIEM v7.x.
Solution Node.js-charting process is responsible for generating PDF
charts in scheduled reports. Check if it is possible to...
Hi @Kunj , All details regarding VirusTotal Integration are published in
below document: Integration Settings - VirusTotal :
https://help.fortinet.com/fsiem/7-1-3/Online-Help/HTML5_Help/Integration-settings.htm#VirusTot2
VirusTotal Incident Outbound ...
Hi @RubaAkan1 ,There is no quick fix for this and it involves
investigation on your environment. I suggest you to contact Fortinet
Support Open Chrome Browser > More Tools > Developer Tools > Network
Inspection and Go to CMDB tab, Do you see any erro...
Hi Eugene , Issue is specific to your environment , suggest you to open
a ticket with Fortinet support. The problem could be due to large or
incorrect query/api call done to FortiSIEM that caused excessive errors
in backed,
Hi Adam, Normally everything should work uninterruptedly. This depends
on anything unusual on the windows or FortiSIEM super/collector end.
Monitor FortiSIEM status via GUI Health and windows by its utilization.
Also ensure network connectivity is st...
Hi Levi,You can configure agents to send logs to collector and then
collector to supervisor. This is feasible via internet and recommended
approach.Ensure that all ports are open for required
traffic:https://docs.fortinet.com/document/fortisiem/7.2.4...