Fortinet Document Library

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:


Table of Contents

External Systems Configuration Guide

Indegy Security Platform

What is Discovered and Monitored

Protocol Information Discovered Metrics collected Used for
Syslog (CEF formatted) Host name and Device Type from LOG Over 14 types of security logs Security and Compliance

Event Types

Go to Admin > Device Type > Event Types and search for “Indegy-”.

Rules

None

Reports

None

Configuration

Configure Indegy Security Platform to send syslog in the supported format to FortiSIEM. No configuration is required in FortiSIEM.

Sample Events

<12>Nov 17 09:04:06 10.100.20.40 CEF:0|Indegy|Indegy Security Platform|3.0.33|109|Unauthorized Conversation|7|dvchost=indegy rt=Nov 17 2019 09:04:06 duser=AS_01,Comm. Adapter #2 suser=Eng. Station #9 proto=UDP externalId=125 dst=10.100.102.150 src=10.100.20.34 dpt=47808 cs6Label=policy_name cs6=Use of Unauthorized Protocols in Siemens Controllers cat=NetworkEvents

Indegy Security Platform

What is Discovered and Monitored

Protocol Information Discovered Metrics collected Used for
Syslog (CEF formatted) Host name and Device Type from LOG Over 14 types of security logs Security and Compliance

Event Types

Go to Admin > Device Type > Event Types and search for “Indegy-”.

Rules

None

Reports

None

Configuration

Configure Indegy Security Platform to send syslog in the supported format to FortiSIEM. No configuration is required in FortiSIEM.

Sample Events

<12>Nov 17 09:04:06 10.100.20.40 CEF:0|Indegy|Indegy Security Platform|3.0.33|109|Unauthorized Conversation|7|dvchost=indegy rt=Nov 17 2019 09:04:06 duser=AS_01,Comm. Adapter #2 suser=Eng. Station #9 proto=UDP externalId=125 dst=10.100.102.150 src=10.100.20.34 dpt=47808 cs6Label=policy_name cs6=Use of Unauthorized Protocols in Siemens Controllers cat=NetworkEvents