Fortinet black logo

New Features

Home FortiAnalyzer 7.0.0 New Features

FortiEDR Central Manager logging

7.0.0
7.4.0
7.2.0
7.0.0
6.4.0
6.2.3
6.2.2
6.2.1
6.2.0
Copy Link
Copy Doc ID 6dd8af04-513d-11eb-b9ad-00505692583a:771757
Download PDF

FortiEDR Central Manager logging

FortiEDR Central Manager can send its logs in Syslog format to FortiAnalyzer and the FortiAnalyzer parses the logs and inserts them into its SIEM database for event correlation and reporting.

To view FortiEDR logs in the Fabric log view:
  1. FortiAnalyzer can collect FortiEDR Central Manager logs in Syslog.
    Before this enhancement, FortiAnalyzer uses the syslog parser to parse FortiEDR Central Manager logs in SIEM.

    FortiEDR Central Manager log messages and types did not display properly in the Fabric log view.
  2. After this enhancement, FortiAnalyzer includes a FortiEDR parser in the SIEM to parse FortiEDR Central Manager logs.

    FortiAnalyzer can display FortiEDR Central Manager logs properly in the Fabric.
Previous
Next

Related Videos

sidebar video

FortiAnalyzer Support for FortiEDR Management Logs

  • 1,403 views
  • 2 years ago

FortiEDR Central Manager logging

FortiEDR Central Manager can send its logs in Syslog format to FortiAnalyzer and the FortiAnalyzer parses the logs and inserts them into its SIEM database for event correlation and reporting.

To view FortiEDR logs in the Fabric log view:
  1. FortiAnalyzer can collect FortiEDR Central Manager logs in Syslog.
    Before this enhancement, FortiAnalyzer uses the syslog parser to parse FortiEDR Central Manager logs in SIEM.

    FortiEDR Central Manager log messages and types did not display properly in the Fabric log view.
  2. After this enhancement, FortiAnalyzer includes a FortiEDR parser in the SIEM to parse FortiEDR Central Manager logs.

    FortiAnalyzer can display FortiEDR Central Manager logs properly in the Fabric.
Previous
Next