Setting Up FortiAnalyzer
Task |
Description |
---|---|
Create or select an account to use for integration with the FortiAnalyzer Integration App. |
Set up JSON-RPC read-write permission for the account. The profile for this account only requires read-write access to Incidents & Events. API calls from the app require the account to have JSON-RPC read-write permission. Use CLI commands to set JSON-RPC permission: config system admin user edit servicenow_account set rpc-permit read-write end For more information, see the FortiAnalyzer Administration Guide in the Fortinet Document Library. |
Install a trusted, signed SSL certificate and CA certificate |
ServiceNow requires a trusted, signed SSL certificate and CA certificate for secure API communication. See the Certificates section in the FortiAnalyzer Administration Guide. |
Create Fabric Connectors in Fabric View. |
You will use the Fabric Connector to send notifications to the FortiAnalyzer Integration App upon creation or update of incidents:
For more information, see Creating or editing ITSM connectors section in the FortiAnalyzer Administration Guide. |
Enable incident notifications on FortiAnalyzer. |
This will notify the FortiAnalyzer Integration App when an incident is raised or updated on FortiAnalyzer. Go to Incidents & Events > Incidents > Settings to enable notifications. For more information, see the following sections in the FortiAnalyzer Administration Guide:
|