Fortinet Document Library

Version:

Version:


Table of Contents

Download PDF
Copy Link

Introduction

This document provides the following information for FortiInsight version 6.2.0:

What's new in FortiInsight version 6.2.0

The following table lists new features and enhancements in FortiInsight version 6.2.0.

Feature

Description

Increased storage of events

Due to architecture, and system improvements FortiInsight will now default to storing 30 days worth of live events, and 12 months of Archive events.

  • Previously only 7 days live, and 2 months of archive events were able to be stored. This has now seen a 4 x improvement on Live events, and a 6 x improvement for Archive events.

FortiInsight-VM initial pre-release

Support for running FortiInsight on-prem with provided distributions on MS Hyper-V, VMWare ESXI, and Linux KVM.

Command Line arguments

Command Line arguments integrated throughout the FortiInsight pipeline. This requires endpoint > 5.2 to begin to collect this new information.

  • Command-line arguments are now present on all “new process created” events where applicable.
  • You can now use these to craft policies targeting command line arguments

Support for file printed events

File printed events are now fully supported on the FortiInsight pipeline, and now contain additional meta-information such as:

  • Number of pages printed
  • Bytes printed
  • Name of the printer used
  • All the new meta-information fields are supported on policy creation, and AI will begin to learn behaviors associated with them.

Added table setting save

All table settings have been moved to behind a settings button. Here you can check/uncheck which columns you want to show, and how many rows you want to display on the table.

Event information

All policy and ai alerts will now contain all event information for the event that triggered them, including command-line arguments, and file printed information.

Date Time picker improvements

  • Added search-ability on pressing enter.
  • Restyling to show a much clearer error indication.

Update to search bar errors

Errors will no longer be visible in line, breaking the display of the search bar. They now have their own section.

For more information about new features, see the FortiInsight Administration Guide.

Introduction

This document provides the following information for FortiInsight version 6.2.0:

What's new in FortiInsight version 6.2.0

The following table lists new features and enhancements in FortiInsight version 6.2.0.

Feature

Description

Increased storage of events

Due to architecture, and system improvements FortiInsight will now default to storing 30 days worth of live events, and 12 months of Archive events.

  • Previously only 7 days live, and 2 months of archive events were able to be stored. This has now seen a 4 x improvement on Live events, and a 6 x improvement for Archive events.

FortiInsight-VM initial pre-release

Support for running FortiInsight on-prem with provided distributions on MS Hyper-V, VMWare ESXI, and Linux KVM.

Command Line arguments

Command Line arguments integrated throughout the FortiInsight pipeline. This requires endpoint > 5.2 to begin to collect this new information.

  • Command-line arguments are now present on all “new process created” events where applicable.
  • You can now use these to craft policies targeting command line arguments

Support for file printed events

File printed events are now fully supported on the FortiInsight pipeline, and now contain additional meta-information such as:

  • Number of pages printed
  • Bytes printed
  • Name of the printer used
  • All the new meta-information fields are supported on policy creation, and AI will begin to learn behaviors associated with them.

Added table setting save

All table settings have been moved to behind a settings button. Here you can check/uncheck which columns you want to show, and how many rows you want to display on the table.

Event information

All policy and ai alerts will now contain all event information for the event that triggered them, including command-line arguments, and file printed information.

Date Time picker improvements

  • Added search-ability on pressing enter.
  • Restyling to show a much clearer error indication.

Update to search bar errors

Errors will no longer be visible in line, breaking the display of the search bar. They now have their own section.

For more information about new features, see the FortiInsight Administration Guide.