Fortinet black logo

Fabric Normalization Reference

Home FortiAnalyzer 7.2.1 Fabric Normalization Reference
7.2.1
7.4.2
7.4.1
7.4.0
7.2.5
7.2.4
7.2.3
7.2.2
7.2.1
7.2.0

FortiAI logs

FortiAI logs

FortiAnalyzer supports normalizing FortiAI logs as Fabric logs.

The following field mapping applies:

FortiAI Log Field

Normalized Fabric Log Field
devid data_sourceid
device_name data_sourcename
data_timestamp data_timestamp
status app_state
action event_action
logid event_id
level event_severity
subtype event_subtype
type event_type
host_classification host_classification
host_hwvendor host_hwvendor
host_hwver host_hwver
host_ip host_ip
host_mac host_mac
devhost,host_name host_name
host_osname host_osname
host_osver host_osver
host_type host_type
host_uid host_uid
victimip src_ip
victimport src_port
virusname threat_name
url,filetype threat_pattern
risklevel threat_severity
scenariotype threat_type
user user_id
Previous
Next

FortiAI logs

FortiAnalyzer supports normalizing FortiAI logs as Fabric logs.

The following field mapping applies:

FortiAI Log Field

Normalized Fabric Log Field
devid data_sourceid
device_name data_sourcename
data_timestamp data_timestamp
status app_state
action event_action
logid event_id
level event_severity
subtype event_subtype
type event_type
host_classification host_classification
host_hwvendor host_hwvendor
host_hwver host_hwver
host_ip host_ip
host_mac host_mac
devhost,host_name host_name
host_osname host_osname
host_osver host_osver
host_type host_type
host_uid host_uid
victimip src_ip
victimport src_port
virusname threat_name
url,filetype threat_pattern
risklevel threat_severity
scenariotype threat_type
user user_id
Previous
Next