Fortinet black logo

New Features

Drill-down to Log View from Events

Copy Link
Copy Doc ID bc40d227-4cc1-11e9-94bf-00505692583a:962014
Download PDF

Up to 100 logs related to each event can be stored and viewed in Event Manager. Previously, if more logs are needed over a wider time window, or similar activity on other endpoints needs to be checked, a user must navigate to Log View, determine the correct out filters, then manually enter them to find the logs that they are looking for. This feature adds drill-down capabilities in Event Manager that will automatically open Log View with the required filters preset.

To launch Search in Logview from an event in the All Events table:
  1. Go to Incidents & Events > Event Monitor > All Events.
  2. Right click on an event.
  3. Select Search in Logview.

    Log View will launch, with the filter automatically filled in with the following information:

    • Log type of the event
    • Time range (the first to the last occurrence of the event)
    • Event trigger and group by value

To launch Search in Logview from an event in the All Incidents table:
  1. Go to Incidents & Events > Event Monitor > All Incidents.
  2. Right click on an event.
  3. Select Search in Logview.

    Log View will launch, with the filter automatically filled in.

Up to 100 logs related to each event can be stored and viewed in Event Manager. Previously, if more logs are needed over a wider time window, or similar activity on other endpoints needs to be checked, a user must navigate to Log View, determine the correct out filters, then manually enter them to find the logs that they are looking for. This feature adds drill-down capabilities in Event Manager that will automatically open Log View with the required filters preset.

To launch Search in Logview from an event in the All Events table:
  1. Go to Incidents & Events > Event Monitor > All Events.
  2. Right click on an event.
  3. Select Search in Logview.

    Log View will launch, with the filter automatically filled in with the following information:

    • Log type of the event
    • Time range (the first to the last occurrence of the event)
    • Event trigger and group by value

To launch Search in Logview from an event in the All Incidents table:
  1. Go to Incidents & Events > Event Monitor > All Incidents.
  2. Right click on an event.
  3. Select Search in Logview.

    Log View will launch, with the filter automatically filled in.