Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • New Features

    Home FortiAnalyzer 6.4.0 New Features
    6.4.0
    7.6.0
    7.4.0
    7.2.0
    7.0.0
    6.4.0
    6.2.3
    6.2.2
    6.2.1
    6.2.0

    Incident page improvement 6.4.1

    Incident page improvement 6.4.1

    This is an enhancement to the incident analysis page that offers a more useful view for users by introducing Processes, Software and Vulnerabilities tabs. These tabs include endpoint information that attaches to incidents.

    To view the incident page improvements:
    1. Go to FortiSOC > Incidents, and select an incident to view the Incident Analysis page.
      • Incident attachment for endpoint processes:
        • Click the table view icon in the top-right corner in the attachment section to view endpoint processes in a table format.
        • Click the raw data icon in the top-right corner in the attachment section to view endpoint process information as raw data.
        • Select a time from the snapshots dropdown to view different snapshots.
        • Enter search keywords in the search field to view filtered records which match the keyword. Matching keywords are highlighted in the results.
      • Incident attachment for installed software.
        • Click the table view in the top-right corner in the attachment section to view installed software in a table format.
        • Click the raw data icon in the top-right corner in the attachment section to view installed software information as raw data.
        • Select a time from the snapshots dropdown to view different snapshots.
        • Enter search keywords in the search field to view filtered records which match the keyword. Matching keywords are highlighted in the results.
      • Incident attachment for endpoint vulnerabilities.
        • Click the table view icon in the top-right corner in the attachment section to view endpoint vulnerabilities in a table format.
        • Click the raw data icon in the top-right corner in the attachment section to view endpoint process information as raw data.
        • Select a time from the snapshots dropdown to view different snapshots.
        • Enter search keywords in the search field to view filtered records which match the keyword. Matching keywords are highlighted in the results.
    Previous
    Next

    Incident page improvement 6.4.1

    Incident page improvement 6.4.1

    This is an enhancement to the incident analysis page that offers a more useful view for users by introducing Processes, Software and Vulnerabilities tabs. These tabs include endpoint information that attaches to incidents.

    To view the incident page improvements:
    1. Go to FortiSOC > Incidents, and select an incident to view the Incident Analysis page.
      • Incident attachment for endpoint processes:
        • Click the table view icon in the top-right corner in the attachment section to view endpoint processes in a table format.
        • Click the raw data icon in the top-right corner in the attachment section to view endpoint process information as raw data.
        • Select a time from the snapshots dropdown to view different snapshots.
        • Enter search keywords in the search field to view filtered records which match the keyword. Matching keywords are highlighted in the results.
      • Incident attachment for installed software.
        • Click the table view in the top-right corner in the attachment section to view installed software in a table format.
        • Click the raw data icon in the top-right corner in the attachment section to view installed software information as raw data.
        • Select a time from the snapshots dropdown to view different snapshots.
        • Enter search keywords in the search field to view filtered records which match the keyword. Matching keywords are highlighted in the results.
      • Incident attachment for endpoint vulnerabilities.
        • Click the table view icon in the top-right corner in the attachment section to view endpoint vulnerabilities in a table format.
        • Click the raw data icon in the top-right corner in the attachment section to view endpoint process information as raw data.
        • Select a time from the snapshots dropdown to view different snapshots.
        • Enter search keywords in the search field to view filtered records which match the keyword. Matching keywords are highlighted in the results.
    Previous
    Next