Description This article describes how to troubleshoot custom rules.
Scope Rules. Solution Each custom rule should be tested before it is
activated. The related documentation about how to test a rule is: #
Testing a Rule Documentation. - If the rule ...
Description This article describes how Retention Policies work. Scope
Storage. Solution When the Online database becomes full, then events
must be deleted to make room for new events. This can be Space-based or
Policy-based. 1) Policy-Based Retention...
Description This article describes how to easily make a query via the
API for an Organization in FortiSIEM. Instead of creating the query XML
file manually, it is possible to create it automatically. Scope API.
Solution 1) Connect on Supervisor CLI a...
Description This article describes how baseline works and some key
points to check for troubleshooting. For further
information/documentation about the baseline reports/rules, follow the
FortiSiem Advanced Analytics training:Advanced Analytics Traini...
Description This article describes how to troubleshoot Parsers in case
the Parser Test is successful, but the logs are still not parsed from
this Parser. Scope Parsers. Solution - Review the Parsers
documentation:Parsers Documentation. - If the Parse...
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.