About DanielHanman

DanielHanman · 08-26-2022

We have now released Content Updates:FortiSIEM 6.4.0 - 110FortiSIEM 6.5.0 - 204FortiSIEM 6.6.0 - 301Added Parser BarracudaWebSecGWParser.xml Parser Updates ApacheParser.xml AOWUA_WinParser.xml AwsSecurityHubParser.xml BitdefenderGravityZoneParser.xml...

DanielHanman · 07-27-2022

Hi FortiSIEM Users,Today we have released version 6.6.0, release notes here! This release has several new features, but I would like to highlight three in particular and provide some context around these: A new Read API for Watch Lists - this is a gr...

DanielHanman · 05-11-2022

FortiSIEM Community,We released FortiSIEM 6.5.0, this release brought new capabilities in a number of areas as well as the FortiSIEM Manager! The FortiSIEM Manager provides visibility and Incident management of separate FortiSIEM Instances. FortiSIEM...

DanielHanman · 04-19-2022

We have now released Content Update 106 for installation.Instructions on the Content Update service can be found here.*Requires FortiSIEM 6.4.0 or higher.------------------------------DanielFortiSIEM Product Manager------------------------------

DanielHanman · 04-04-2022

We have now released Content Update 105 for installation.Instructions on the Content Update service can be found here.*Requires FortiSIEM 6.4.0 or higher.------------------------------DanielFortiSIEM Product Manager------------------------------

DanielHanman · 09-21-2022

It is not currently possible to limit by on a group.------------------------------DanielFortiSIEM Product Manager-------------------------------------------------------------------------Original Message:Sent: Sep 20, 2022 08:26 AMFrom: E VSubject: Fo...

DanielHanman · 09-16-2022

What if you added a group by on the Event Receive Date? Does that help?------------------------------DanielFortiSIEM Product Manager-------------------------------------------------------------------------Original Message:Sent: Sep 15, 2022 09:26 PMF...

DanielHanman · 07-28-2022

Hi Manuel,With ClickHouse the storage is virtual disks attached to the Super or Worker VM, as you mention you can still use NFS as an archive destination and that will utilise the FortiSIEM eventDB.ThanksDan------------------------------DanielFortiSI...

DanielHanman · 06-27-2022

Hi IvanWindows OMI integration should continue to work.We introduced OMI support in FortiSIEM from version 6.3.3 https://docs.fortinet.com/document/fortisiem/6.3.3/release-notes/749147/whats-new-in-6-3-3 and details can be found here https://docs.for...

DanielHanman · 03-01-2022

Hi Moh,SNMP is only for Discovery and Performance monitoring.You'll also need to discover with WMI/OMI or use the Windows Agent if you want to get the logs in https://docs.fortinet.com/document/fortisiem/6.4.0/external-systems-configuration-guide/421...

User Statistics

User Activity

FortiSIEM Content Update - 110 / 301

FortiSIEM 6.6.0 Released

FortiSIEM 6.5.0 Release

FortiSIEM Content Update - 106

FortiSIEM Content Update - 105

RE: FortiSEIM round values

RE: FortiSEIM round values

RE: FortiSIEM 6.6.0 Released

RE: WMI Problem CVE-2022-30190

RE: SNMP

FortiSIEM

KCS