Help
FortiAnalyzer
FortiAnalyzer can receive logs and Windows host events directly from endpoints connected to EMS, and you can use FortiAnalyzer to analyze the logs and run reports.
edgar1
Staff
Staff

Created on ‎02-29-2016 11:09 AM

Article Id 198779

Technical Note: FortiAnalyzer is not accepting logs, event log reports unable to accept logs from device

Description
This article provides a possible solution for the situation where the event log on FortiAnalyzer displays the following message:

Unable to accept logs from Device...... due to internal error, errcode=-1002.

Solution
This may be due to the processes fortilogd and sqllogd not working correctly.  They can be restarted using the following CLI commands.
#diag test app fortilogd 99
#diag test app sqllogd 99

After restarting the processes the FortiAnalyzer should now operate correctly and receive logs from associated FortiGates.

5858
0 Kudos
Submit Article Idea
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.​

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2023 Fortinet, Inc. All Rights Reserved.