Hello, After upgrading to version 7.3.2, we received an error when we
tried to log in with the local user. When we logged in with admin and
checked the users, we realised that they were seen as fortiauth. Has
anyone encountered this situation, how ca...
Hi guys, We want to get the collectors behind LoadBalancer. We have no
problem with syslog, but we get Windows logs with agent and we can see
the logs with tcpdump but we cannot see them on GUI. What could be the
reason for this? Thanks in advance
Hi guys, We have an environment used in an all in one structure. Version
7.0.6 is used. We want to upgrade, which version do you recommend?
Finally, there is 7.3.2, but can we switch directly to this version
without any problems? Thanks in advance
Hi Guys, I am upgrading from 7.2.4 to 7.3.2. I upgraded Supervisor, but
when I download image from collectors GUI, the process does not finish,
the process continues. Manually I tried to do the upgrade file under
/opt/upgrade, but towards the end I g...
Hi Team, In Clickhouse we want to define NFS as cold tier. With version
7.3 it is written that this can be realised, but has anyone experienced
this and if so, is it stable?
Hi @lbahtarliev We did 443 routing on LB and on the windows side we are
routing to the public ip of the collector, but we did not do certificate
validation. When we check the /ssl_access_log output on the collector,
we see 200 output.
Hi @Secusaurus Yes, We've upgraded 7.2.4 to 7.3.2 version.We have a
tenant structure, but the users we create here are connected to the
global locally. We did not have a problem with the admin user, as I
said, there are locally created users. We did ...
Hi, When I examine the release note, I understand that we need to do
Post-Upgrade ClickHouse IP Index
Rebuilding.https://docs.fortinet.com/document/fortisiem/7.3.2/release-notes/698372/whats-new-in-7-3-2
it's correct. FortiSIEM cannot open the data in the incoming log,
although we specified it as data in the API request, we could not get
it. Is there any other method to get it?
Hi @Secusaurus Since the event log data is in nested form unfortunately
FortiSIEM cannot populate “data” field. { "status": "Request was
successful", "nextpagetoken": "tokenid", "response": { "dataformat":
"csv", "data":
["syslogheader,time,indexedti...
