Fortinet black logo

Administration Guide

Home FortiInsight Cloud 6.0.0 Administration Guide

Introduction

6.0.0
21.2.0
21.1.0
6.4.0
6.2.0
6.0.0
5.6.0
5.4.0
Copy Link
Copy Doc ID 9f0fac64-84dc-11ea-9384-00505692583a:535328
Download PDF

Introduction

FortiInsight is a unique data security and threat detection solution that delivers advanced threat hunting to help you detect, respond to, and manage risky behaviors that put your organization's business-critical data at risk. FortiInsight combines powerful and flexible machine learning with detailed forensics around user actions to provide complete visibility of activities around your organization's data. By monitoring user behavior and data movement both on and off your organization's network, and instantly alerting you to anomalous activities, FortiInsight helps you strengthen your security posture, protect your sensitive information, and support regulatory compliance.

What's new in FortiInsight version 6.0.0

The following table lists new features and enhancements in FortiInsight version 6.0.0:

Feature

Description

Redesigned notifications

Notifications have been redesigned and are now stackable in the UI

  • Instead of receiving UI notifications at the top of the UI, they are now much more compact and situated on the lower left.
  • These will also stack if you receive multiple notifications at once, allowing you to see them much clearer.

User experience enhancement

Load on demand to enhance the user experience

Analysis and processing are now much more scalable. This ensures events, and alerts are processed and available more quickly.

Menu specific items

Removed high-level Alerts menu item in favor of AI, and Policy specific menu items

  • We have updated the Menu so that the Alerts are now local to the individual components for AI, and Policy.

Implicit feedback for AI module

We have now built-in implicit feedback monitoring for the AI module. This means that if you click on an AI Alert, the AI module will be notified of your interest and begin to learn more robustly based on this information.

5.3.0 Windows Endpoint Collector

Added support for more robust collection of Network Events.

Policies and tag import/export
  • You can now export and import tags and settings from a JSON file.

New Widgets and Summary tabs
  • FortiInsight has improved the view of the summary tabs on Threat Hunting (includes a pie chart for top 10 elements).
  • The total number is now provided on headings.
  • Full context menu integration.
  • Highlighting and contextual feedback.

System requirements

To successfully install and use FortiInsight version 6.0.0, your system must meet the following requirements.

Component

Requirements

Endpoint agent support

FortiInsight provides endpoint agents for the following platforms:

  • Windows 7 and later (32-bit and 64-bit)

  • Windows Server 2008 and later (32-bit and 64-bit)

Endpoint computers
  • 1.0 GHz CPU - x86 or x64 (agent uses 0.1% to 5%)
  • 1 GB RAM (agent uses 10 to 30 MB)
  • 20 MB free disk space (more space is needed to store compressed and encrypted offline events)

Browser
  • Google Chrome (recommended)
  • Chromium
  • Mozilla Firefox
  • Apple Safari

Other web browsers may work correctly, but FortInsight does not support them.

Input devices

The FortiInsight UI is not optimized to use with touch devices. We recommend using a keyboard and mouse as the input devices for interacting with the UI.

Related resources

The following resources provide more information about FortiInsight:

Previous
Next

Introduction

FortiInsight is a unique data security and threat detection solution that delivers advanced threat hunting to help you detect, respond to, and manage risky behaviors that put your organization's business-critical data at risk. FortiInsight combines powerful and flexible machine learning with detailed forensics around user actions to provide complete visibility of activities around your organization's data. By monitoring user behavior and data movement both on and off your organization's network, and instantly alerting you to anomalous activities, FortiInsight helps you strengthen your security posture, protect your sensitive information, and support regulatory compliance.

What's new in FortiInsight version 6.0.0

The following table lists new features and enhancements in FortiInsight version 6.0.0:

Feature

Description

Redesigned notifications

Notifications have been redesigned and are now stackable in the UI

  • Instead of receiving UI notifications at the top of the UI, they are now much more compact and situated on the lower left.
  • These will also stack if you receive multiple notifications at once, allowing you to see them much clearer.

User experience enhancement

Load on demand to enhance the user experience

Analysis and processing are now much more scalable. This ensures events, and alerts are processed and available more quickly.

Menu specific items

Removed high-level Alerts menu item in favor of AI, and Policy specific menu items

  • We have updated the Menu so that the Alerts are now local to the individual components for AI, and Policy.

Implicit feedback for AI module

We have now built-in implicit feedback monitoring for the AI module. This means that if you click on an AI Alert, the AI module will be notified of your interest and begin to learn more robustly based on this information.

5.3.0 Windows Endpoint Collector

Added support for more robust collection of Network Events.

Policies and tag import/export
  • You can now export and import tags and settings from a JSON file.

New Widgets and Summary tabs
  • FortiInsight has improved the view of the summary tabs on Threat Hunting (includes a pie chart for top 10 elements).
  • The total number is now provided on headings.
  • Full context menu integration.
  • Highlighting and contextual feedback.

System requirements

To successfully install and use FortiInsight version 6.0.0, your system must meet the following requirements.

Component

Requirements

Endpoint agent support

FortiInsight provides endpoint agents for the following platforms:

  • Windows 7 and later (32-bit and 64-bit)

  • Windows Server 2008 and later (32-bit and 64-bit)

Endpoint computers
  • 1.0 GHz CPU - x86 or x64 (agent uses 0.1% to 5%)
  • 1 GB RAM (agent uses 10 to 30 MB)
  • 20 MB free disk space (more space is needed to store compressed and encrypted offline events)

Browser
  • Google Chrome (recommended)
  • Chromium
  • Mozilla Firefox
  • Apple Safari

Other web browsers may work correctly, but FortInsight does not support them.

Input devices

The FortiInsight UI is not optimized to use with touch devices. We recommend using a keyboard and mouse as the input devices for interacting with the UI.

Related resources

The following resources provide more information about FortiInsight:

Previous
Next