Fortinet black logo

Administration Guide

Automated Threat Response (ATR)

Copy Link
Copy Doc ID 825689eb-200d-11e9-b6f6-f8bc1258b856:328047
Download PDF

Automated Threat Response (ATR) integrates with security solutions such as FireEye, Fortinet, and Palo Alto Networks to correlate security alerts. Incoming information is normalized into a consistent Security Event format and provide additional information about the source hosts.

ATR isolates restricts, or blocks compromised endpoints and reduces threat containment time by:

  • Automating actions on an event based on policies
  • Providing information in security alerts
  • Prioritizing security events
  • Tracing a threat across IT domains and automating an action to minimize the threat containment time
Note

If you have not purchased the ATR license you will not be able to access the ATR features.

Automated Threat Response (ATR) integrates with security solutions such as FireEye, Fortinet, and Palo Alto Networks to correlate security alerts. Incoming information is normalized into a consistent Security Event format and provide additional information about the source hosts.

ATR isolates restricts, or blocks compromised endpoints and reduces threat containment time by:

  • Automating actions on an event based on policies
  • Providing information in security alerts
  • Prioritizing security events
  • Tracing a threat across IT domains and automating an action to minimize the threat containment time
Note

If you have not purchased the ATR license you will not be able to access the ATR features.