Fortinet black logo

Version:

6.2.15
6.2.14
6.2.13

Version:

6.2.12
6.2.11
6.2.10

Version:

6.2.9
6.2.8
6.2.7

Version:

6.2.6
6.2.5
6.2.4

Version:

6.2.3
6.2.2
6.2.0

Version:

6.0.0
5.6.0
5.4.0

Table of Contents

Cookbook

6.2.10
6.2.15
6.2.14
6.2.13
6.2.12
6.2.11
6.2.10
6.2.9
6.2.8
6.2.7
6.2.6
6.2.5
6.2.4
6.2.3
6.2.2
6.2.0
6.0.0
5.6.0
5.4.0
Download PDF
Copy Doc ID 30163da2-3812-11ec-9c99-00505692583a:270452
Copy Link

FortiGate Cloud-based IOC

Topology, FortiView, and automation support Indicators of Compromise (IOC) detection from the FortiGate Cloud IOC service.

FortiGate lists IOC entries on the FortiView pane, and uses the IOC event logs as a trigger for automation stitches. IOC and web filter licenses are required to use this feature. You must also enable FortiGate Cloud logging on the FortiGate.

To view compromised hosts, go to FortiView > Compromised Hosts. The IOC entries are displayed when the source is FortiGate Cloud.

You can also view the IOC entries in the FortiGate Cloud portal.

Previous
Next

FortiGate Cloud-based IOC

Topology, FortiView, and automation support Indicators of Compromise (IOC) detection from the FortiGate Cloud IOC service.

FortiGate lists IOC entries on the FortiView pane, and uses the IOC event logs as a trigger for automation stitches. IOC and web filter licenses are required to use this feature. You must also enable FortiGate Cloud logging on the FortiGate.

To view compromised hosts, go to FortiView > Compromised Hosts. The IOC entries are displayed when the source is FortiGate Cloud.

You can also view the IOC entries in the FortiGate Cloud portal.

Previous
Next