Fortinet black logo

Administration Guide

Home FortiPAM 1.3.0 Administration Guide
1.3.0
1.3.0
1.2.0
1.1.2
1.1.1
1.1.0
1.0.3
1.0.2
1.0.1
1.0.0

SSH

SSH

Go to SSH in Log & Report to see SSH related logs.

For each SSH log, the following columns are displayed:

  • Date/time

  • Severity

  • Action

  • Command

  • Secret ID

  • User

  • Token Id

  • Event Type

  • Group

  • Source Port

  • Destination IP

  • Destination Port

  • Protocol

Selecting the Corresponding secret or the Corresponding secret video buttons when you right-click an SSH log takes you to the corresponding secret log or the secret video log, respectively.

The SSH log keeps track of all the events related to the SSH filter profile. It contains information such as the severity of a command, the destination IP and port used to execute the command, and the action associated with the log. The action may be Blocked, indicating the command has been blocked from executing on the secret or Passthrough, representing it is allowed to execute on the secret.

The following options are available in the SSH tab:

Back ()

Go back to SSH.
Export

From the Export dropdown, select to export the SSH logs in the following three formats:

  • JSON: Export the selected SSH log to your computer as a JSON file named as secret-xyz-YYYY_MM_DD.json

  • CSV: Export the selected SSH log to your computer as a CSV file named as secret-xyz-YYYY_MM_DD.csv

  • TEXT: Export the selected SSH log to your computer as a text file named as secret-xyz-YYYY_MM_DD.txt

Log location

Select a source from where to retrieve logs:

  • Disk (default) (FortiPAM)

  • FortiAnalyzer

Time frame

From the dropdown, select from the following time filters:

  • 5 minutes

  • 1 hour

  • 24 hours

  • 7 days

  • Custom

    See Custom filter for an example on how to set up custom filters.

  • View All

Refresh

To refresh the contents, click the refresh icon.

Details

Select to see details for the selected log entry.

Search

Enter a search term in the search field, then hit Enter to search the secret video list. To narrow down your search, see Column filter.
Previous
Next

SSH

Go to SSH in Log & Report to see SSH related logs.

For each SSH log, the following columns are displayed:

  • Date/time

  • Severity

  • Action

  • Command

  • Secret ID

  • User

  • Token Id

  • Event Type

  • Group

  • Source Port

  • Destination IP

  • Destination Port

  • Protocol

Selecting the Corresponding secret or the Corresponding secret video buttons when you right-click an SSH log takes you to the corresponding secret log or the secret video log, respectively.

The SSH log keeps track of all the events related to the SSH filter profile. It contains information such as the severity of a command, the destination IP and port used to execute the command, and the action associated with the log. The action may be Blocked, indicating the command has been blocked from executing on the secret or Passthrough, representing it is allowed to execute on the secret.

The following options are available in the SSH tab:

Back ()

Go back to SSH.
Export

From the Export dropdown, select to export the SSH logs in the following three formats:

  • JSON: Export the selected SSH log to your computer as a JSON file named as secret-xyz-YYYY_MM_DD.json

  • CSV: Export the selected SSH log to your computer as a CSV file named as secret-xyz-YYYY_MM_DD.csv

  • TEXT: Export the selected SSH log to your computer as a text file named as secret-xyz-YYYY_MM_DD.txt

Log location

Select a source from where to retrieve logs:

  • Disk (default) (FortiPAM)

  • FortiAnalyzer

Time frame

From the dropdown, select from the following time filters:

  • 5 minutes

  • 1 hour

  • 24 hours

  • 7 days

  • Custom

    See Custom filter for an example on how to set up custom filters.

  • View All

Refresh

To refresh the contents, click the refresh icon.

Details

Select to see details for the selected log entry.

Search

Enter a search term in the search field, then hit Enter to search the secret video list. To narrow down your search, see Column filter.
Previous
Next