Fortinet Community

Richie_C · 12-07-2023

And Finally, make sure the windows server has auditing configured. For my above example, I enabled auditing for logon events (both success and failure). This can be found in Programs > Administrative Tools > Local Security Policy.

Richie_C · 12-07-2023

In my example, I am trying to collect security logs. Also, please make sure you hit the apply button in the template association. Save is not enough. this has caused a problem for me in the past :)

Richie_C · 12-07-2023

Hi Could you share a screenshot of the agent template. This will help me to understand the event you are trying to collect. Thanks Richard

Richie_C · 12-06-2023

Hi 6.7.8 will have the most bug fixes. The last number (8) is the number of patches. This will be a stable release, but you are likely to be missing out on some new features and you will have to upgrade sooner that some more recent releases. 7.1.0 ha...

Richie_C · 12-06-2023

Hi I'm thinking that you could achieve it with an analytics search. I don't actually have a collector in my test setup, but my idea is to search all logs and then aggregate the search with reporting IP and collector name or collector id. Then use the...

Fortinet Community

User Statistics

User Activity

Re: FortiSiem Agent windows not sending logs to Collector or Super (Only PH_ logs are received SNMP)

Re: FortiSiem Agent windows not sending logs to Collector or Super (Only PH_ logs are received SNMP)

Re: FortiSiem Agent windows not sending logs to Collector or Super (Only PH_ logs are received SNMP)

Re: FortiSIEM version for production

Re: Log Source SIEM

Re: ISDB update through REST API from file "ffdb_....

Re: Shutting down the Primary of an HA pair

Re: FortiSiem Agent windows not sending logs to Co...

Re: FortiSIEM version for production

Re: FortiSiem Agent windows not sending logs to Co...

Re: Log Source SIEM

Re: ISDB update through REST API from file "ffdb_....

Re: is it possible to place the mgmt interface int...

Re: Migrating a Policy Package

Re: Routing issues Cisco VS Fortigate help

KCS

Fortinet Training Institute