Fortinet black logo

User Guide

24.2.0
24.2.0

Slack

Slack

Installing FortiMonitor's Slack application in your workspace ensures your team receives real-time FortiMonitor incident notifications. As well, you can respond to incidents alerts by Acknowledging the incident or Delaying, Escalating, and Cancelling future notifications.

Configuring the Integration

  1. Visit the integrations page by going to Teams & Activity > Integrations

  2. On the Slack card, click Configure

  3. If this is your first Slack integration, you'll see a single input. Enter the Slack channel you'd like to receive the notifications.
    3.1 If you've previously configured a Slack integration and just want to add a new channel, you can choose to use an existing authorized integration or add a new one. Either way, you'll enter the new Slack channel you'd like to receive the notifications

  4. Hit Done. You'll be taken to Slack where you'll be asked to authorize FortiMonitor's Slack app.

  5. After authorization, you'll arrive back at the FortiMonitor control panel. The integration is now complete. To begin receiving FortiMonitor notifications in your Slack channel, make sure to add your new Slack integration onto your Alert Timelines.

FortiMonitor Bot Permissions

If you are leveraging CounterMeasures remediation and are sending the output to a private slack channel, you will have to further enable the FortiMonitor bot to post the rich content to your channel by doing /invite @FortiMonitor in the channel.

User Authorization

One of the most powerful parts of the FortiMonitor Slack integration is the ability to respond to FortiMonitor incident notifications directly from Slack. To do that, you need to tie your Slack user to your FortiMonitor user. If you attempt to perform one of these actions before authenticating, the action will fail.

  1. Make sure you've configured the FortiMonitor Slack app as described above

  2. Open the My Account modal in FortiMonitor by clicking the user avatar in the top right corner of the page and then click My Account.

  3. Under the Slack Integration module, click Link Slack User. The Link Slack User modal will appear.

  4. Select your Slack Team and enter the display name associated with your Slack account then select Proceed.

  5. You should have received an authentication code via direct message in Slack. Copy the code and enter it in the confirmation input and hit save.

  6. Any action you take in Slack will now be tied to your FortiMonitor account

Previous
Next

Slack

Installing FortiMonitor's Slack application in your workspace ensures your team receives real-time FortiMonitor incident notifications. As well, you can respond to incidents alerts by Acknowledging the incident or Delaying, Escalating, and Cancelling future notifications.

Configuring the Integration

  1. Visit the integrations page by going to Teams & Activity > Integrations

  2. On the Slack card, click Configure

  3. If this is your first Slack integration, you'll see a single input. Enter the Slack channel you'd like to receive the notifications.
    3.1 If you've previously configured a Slack integration and just want to add a new channel, you can choose to use an existing authorized integration or add a new one. Either way, you'll enter the new Slack channel you'd like to receive the notifications

  4. Hit Done. You'll be taken to Slack where you'll be asked to authorize FortiMonitor's Slack app.

  5. After authorization, you'll arrive back at the FortiMonitor control panel. The integration is now complete. To begin receiving FortiMonitor notifications in your Slack channel, make sure to add your new Slack integration onto your Alert Timelines.

FortiMonitor Bot Permissions

If you are leveraging CounterMeasures remediation and are sending the output to a private slack channel, you will have to further enable the FortiMonitor bot to post the rich content to your channel by doing /invite @FortiMonitor in the channel.

User Authorization

One of the most powerful parts of the FortiMonitor Slack integration is the ability to respond to FortiMonitor incident notifications directly from Slack. To do that, you need to tie your Slack user to your FortiMonitor user. If you attempt to perform one of these actions before authenticating, the action will fail.

  1. Make sure you've configured the FortiMonitor Slack app as described above

  2. Open the My Account modal in FortiMonitor by clicking the user avatar in the top right corner of the page and then click My Account.

  3. Under the Slack Integration module, click Link Slack User. The Link Slack User modal will appear.

  4. Select your Slack Team and enter the display name associated with your Slack account then select Proceed.

  5. You should have received an authentication code via direct message in Slack. Copy the code and enter it in the confirmation input and hit save.

  6. Any action you take in Slack will now be tied to your FortiMonitor account

Previous
Next