Fortinet black logo

Fabric Normalization Reference

Home FortiAnalyzer 7.2.2 Fabric Normalization Reference
7.2.2
7.4.2
7.4.1
7.4.0
7.2.5
7.2.4
7.2.3
7.2.2
7.2.1
7.2.0

FortiSOAR logs

FortiSOAR logs

FortiAnalyzer supports normalizing FortiSOAR logs as Fabric logs.

The following field mapping applies:

FortiSOAR Log Field

Normalized Fabric Log Field

loguid,id

loguid

epid

epid

euid

euid
device_id,devid data_sourceid

data_source_name

data_sourcename

data_sourcetype

data_sourcetype
data_timestamp data_timestamp
FSR_NAME app_name
service_name app_service
FSR_VER app_ver
event_id event_id
event_message event_message
event_profile event_profile
event_severity event_severity
event_subtype event_subtype
event_type event_type
host_classification host_classification
host_name host_name
src_ip src_ip
user_id user_id
user_name user_name
Previous
Next

FortiSOAR logs

FortiAnalyzer supports normalizing FortiSOAR logs as Fabric logs.

The following field mapping applies:

FortiSOAR Log Field

Normalized Fabric Log Field

loguid,id

loguid

epid

epid

euid

euid
device_id,devid data_sourceid

data_source_name

data_sourcename

data_sourcetype

data_sourcetype
data_timestamp data_timestamp
FSR_NAME app_name
service_name app_service
FSR_VER app_ver
event_id event_id
event_message event_message
event_profile event_profile
event_severity event_severity
event_subtype event_subtype
event_type event_type
host_classification host_classification
host_name host_name
src_ip src_ip
user_id user_id
user_name user_name
Previous
Next