Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • External Systems Configuration Guide

    Home FortiSIEM 6.3.0 External Systems Configuration Guide
    6.3.0
    7.2.4
    7.2.3
    7.2.2
    7.2.1
    7.2.0
    7.1.7
    7.1.6
    7.1.5
    7.1.4
    7.1.3
    7.1.2
    7.1.1
    7.1.0
    7.0.3
    7.0.2
    7.0.1
    7.0.0
    6.7.9
    6.7.8
    6.7.7
    6.7.6
    6.7.5
    6.7.4
    6.7.3
    6.7.2
    6.7.1
    6.7.0
    6.6.5
    6.6.4
    6.6.3
    6.6.2
    6.6.1
    6.6.0
    6.5.3
    6.5.2
    6.5.1
    6.5.0
    6.4.4
    6.4.3
    6.4.2
    6.4.1
    6.4.0
    6.3.3
    6.3.2
    6.3.1
    6.3.0
    6.2.1
    6.2.0
    6.1.2
    6.1.1
    6.1.0
    5.4.0
    5.3.3
    5.3.2
    5.3.1
    5.3.0
    5.0.0

    Change Log

    Change Log

    DateChange Description
    2018-05-23Initial version of the guide.
    2018-07-24 Revision 2 with a new section under Windows Server Configuration - Configuring Log Monitoring for Non-Administrative User.
    2018-08-07 Revision 3 with updated section: Fortinet FortiGate Firewall
    2018-09-12Revision 4 with updated section: Microsoft Azure Audit
    2018-09-26Revision 5 with updated section: WatchGuard Firebox Firewall
    2018-11-28Revision 6 with updated section: Fortinet FortiGate Firewall > Configuring SSH on FortiSIEM to communicate with FortiGate
    2019-01-29Revision 7: updated section: Cisco FireSIGHT
    2019-03-15Revision 8: new section: Threat Intelligence
    2019-03-28Revision 9: updates the guide to reflect the new menu hierarchy in the FortiSIEM tool.
    2019-04-24Revision 10: added Carbon Black Security Platform under End Point Security Software.
    2019-07-24Revision 11: updated integration instructions for Microsoft Office 365 Audit.
    2019-10-22Revision 12: added Clavister Firewall and FortiADC devices. Added Active Directory User Discovery section to Microsoft Active Directory device. Corrections to SQL Server DDL Event Creation Script and SQL Server Database Level Event Creation Script.
    2019-11-22Revision 13: added Zeek (Bro) installation instructions for Security Onion, Cyberoam FortiADC, Epic SecuritySIEM, FortiEDR, FortiNAC, FortiDeceptor, Microsoft Network Policy Server, TrendMicro Deep Discovery. Changed the name of Cisco FireAMP to Cisco AMP Cloud V0. Changed the name of Cisco AMP to Cisco AMP Cloud V1.
    2020-01-03Revision 14: added CradlePoint.
    2020-04-15Revision 15: added Alert Logic Iris API, AWS Kinesis, AWS Security Hub, Cisco Amp, GitLab Cli, Azure Event Hub, Azure Compute, McAfee ePolicy Orchestrator, LastLine, Imperva Securesphere Web App Firewall, Imperva Securesphere DB Security Gateway, Imperva Securesphere DB Monitoring Gateway, Green League WVSS, FortiInsight, Damballa Failsafe, AWS EC2, Cisco Fireamp, Novell Netware, Green League RSAS, Checkpoint SmartCenter, FortiTester, Cisco Viptela, MobileIron, Duo, Indegy Industrial Cybersecurity Suite, Netwrix, Darktrace DCIP, Hirschmann SCADA Firewalls and Switches.
    2020-07-22Revision 16: Edits to Cisco AMP Cloud V0 and Cisco AMP Cloud V1.
    2020-10-09Revision 17: Added Alcide io KAudit, Stormshield Network Security and Tigera Calico
    2020-12-18Revision 18: Added note to AWS CloudTrail API Configuration
    2021-01-05Revision 19: Added Mapping Active Directory User Attributes to FortiSIEM User Attributes.
    2021-02-03Revision 20: Updated Malwarebytes to Malwarebytes Endpoint Protection.
    2021-03-03Revision 21: Added NetApp Data ONTAP Supported Version.
    2021-03-18Revision 22: Added Claroty Continuous Threat Detection, Corero Smartwall Threat Defense, Dragos Platform, Malwarebytes Breach Remediation, Oracle Cloud Access Security Broker (CASB), Proofpoint.
    2021-04-05Revision 23: Updated Linux server section.
    2021-04-07Revision 24: Updated AWS Kinesis for 6.2.0.
    2021-04-16Revision 25: Updated Microsoft Office 365 Audit "Create the Office 365 API Credential" steps.
    2021-04-23Revision 26: Added Salesforce Configuration for 6.2.0, 6.1.x, 5.4.0, 5.3.x, 5.2.x releases.
    2021-07-06Revision 27: Added Security Orchestration and FortiGate SNMPv3 setup example. Updated: Cisco Firepower Threat Defense, Linux Server Rsyslog and Syslog-NG, AWS Security Hub, EC2 Cloudwatch API, AWS EC2 Discovery, Office365 API integration, Microsoft Azure Compute, Microsoft Windows Defender for Endpoint (Windows Defender ATP), Cisco IOS, Cisco FireSIGHT, Cisco Duo, Cisco FireAmp, Cisco Meraki Access Points, Rapid7 Nexpose, Rapid7 InsightVM, Google Workspace, Carbon Black Syslog setup, FortiManager syslog, FortiWeb syslog, FortiSandbox syslog, FortiAuthenticator syslog, FortiClient syslog, FortiADC syslog, FortiDeceptor syslog, FortiNAC syslog, FortiEDR syslog, FortiSOAR syslog. Environmental Sensors updated to Operational Technology, Syslog over TLS.
    New Device Support: Microsoft Windows Print Service Log, AWS Elasticsearch Load Balancer Log, CyberX OT/IoT Security via Log, Digital Defense Vulnerability Scanner via API, FortiAI via Log, FortiCASB integration via API, HP ILO via SNMP Trap, Palo Alto Cortex XDR via Log, Palo Alto WildFire via Log through Palo Alto Firewall.
    Device Support Extensions: CloudTrail Logs via AWS Kinesis, CyberArk Vault integration via REST API, FortiAnalyzer System Event Logs via Syslog, FortiEDR integration via API, FortiGate, FortiAP and FortiSwitch via FortiGate API, GCC High Tenant for Azure Audit, VPC Flog Logs via AWS Kinesis.
    2021-07-22Revision 28: Updated AWS Kinesis Configuration for Configuring AWS CloudTrail Logs through Kinesis Streams, and Configuring VPC Flow Logs through Kinesis Streams.

    2021-07-26

    		Revision 29: Updated Epilog/snare link for Oracle Database Server, Juniper Steel Belted RADIUS, and Apache Web Server configuration.
    2021-07-30Revision 30: Updated Tenable Nessus Vulnerability Scanner configuration.
    2021-08-02Revision 31: Updated Cisco FireSIGHT Configuration.
    2021-08-26Revision 32: Updated AWS EC2 CloudWatch API, Googe Workspace / GSUITE, Zeek Network Security Monitor (Previously Bro). Added Microsoft Advanced Threat Analytics (ATA) On Premise Platform, KVM, FortiProxy, Google Cloud Platform, Mac OS, Otorio RAM2, UserGate UTM Firewall to 6.3.1.
    2021-08-30Revision 33: Updated Microsoft SQL Server for 6.x Guides.
    2021-08-31Revision 34: Added Syslog CEF Format configuration to Check Point FireWall-1 for 6.3.1 Guide.
    2021-09-16Revision 35: Updated Dell Force10 Router and Switch, Dell NSeries Switch, and Dell PowerConnect Switch and Router for 6.3.1, and Microsoft Office 365 Audit for 6.3.x Guides.
    2021-09-17Revision 36: Updated MySQL Server and CyberArk Password Vault for 6.3.x Guides. Added example syslog for Dell Force10 Router and Switch, Dell NSeries Switch, and Dell PowerConnect Switch and Router for 6.3.1 Guide.
    2021-09-24Revision 37: Updated Squid Web Proxy with syslog configuration for versions 4.1.1 and later for 6.1.1-6.3.x Guides.
    2021-10-06Revision 38: Added ArubaOS-CX Switch platform, Barracuda Web Application Firewall, and Cisco Umbrella to 6.3.2 Guide.

    2021-10-08

    		Revision 39: Updated Microsoft Windows Server SNMP Configuration instructions and removed older Microsoft SQL Scripts for 6.3.x.
    2021-10-29Revision 40: Updated Cisco Firepower Management Center (FMC) - Formerly FireSIGHT and FirePower Threat Defense : Using Cisco eStreamer Client for 6.x Guides.
    2021-11-01Revision 41: Updated Configuring FortiSIEM through FortiOS REST API - Step 2: Create an Administrator Profile for 6.3.x.
    2021-11-08Revision 42: Updated Cisco Umbrella Prefix Configuration Information for 6.3.2.
    2021-11-16Revision 43: Updated FortiSIEM External Ports with sFlow port number and protocol from External Devices to Supervisor/Worker/Collector.
    2021-11-30Revision 44: Updated FortiSIEM External Ports Collector Communication table.
    2021-12-06Revision 45: Updated Enable WinRM and set authentication in Microsoft Windows Server.
    2021-12-08Revision 46: Updated Syslog over TLS section for 6.x.
    2021-12-23Revision 47: Google Cloud Platform configuration updated for 6.3.1 and later.
    2022-01-06Revision 48: SNMP V3 Traps section added.
    2022-01-11Revision 49: Microsoft Windows Server section updated with OMI for 6.3.3 and later.
    2022-01-13Revision 50: CrowdStrike Endpoint Security section updated for 6.2.x and later.

    2022-02-15

    Revision 51: Added Ports for OMI based monitoring and log collection in FortiSIEM External Ports section for 6.3.3 and later.

    2022-02-16

    		Revision 52: Added ServiceNow Security Operations to Security Orchestration for 6.3.0 and later.
    2022-02-24Revision 53: Updated Microsoft Defender for Endpoint for 6.3.0 and later.
    2022-03-01Revision 54: Added Flow Support section.
    2022-03-02Revision 55: Updated MySQL Server - Settings for MySQL Server JDBC Access Credentials for Database Auditing - Audit Table field.
    2022-03-18Revision 56: Microsoft Defender for Endpoint legacy information updated. Microsoft Defender for Endpoint moved from Cloud Applications section to End Point Security Software section.
    2022-03-22Revision 57: Configuring Tigera Calico to Send Logs link updated.
    2022-03-28Revision 58: Updated Microsoft Azure Audit Configuration section.

    2022-03-29

    		Revision 59: Updated Supported Devices and Applications by Vendor.
    2022-04-04Revision 60: Added Zscaler Cloud Firewall.
    2022-06-08Revision 61: Updated Setup in FortiSIEM section in Cisco Umbrella Configuration.
    2022-06-17Revision 62: FortiAI updated to FortiNDR.
    2022-07-13Revision 63: Updated Using Cisco eStreamer Client section in Cisco FireSIGHT and FirePower Threat Defence.
    2022-07-25Revision 64: Updated Microsoft Exchange.
    2022-08-09Revision 65: Updated Configuring FortiSIEM for Sophos Central for API Access.

    2022-09-07

    		Revision 66: Updated FortiSIEM External Ports section.
    2022-09-15Revision 67: Updated FortiSIEM External Ports section.
    2022-10-31

    Revision 68: Updated Citrix Netscaler Application Delivery Controller (ADC) Configuration section.

    2022-12-22Revision 69: Updated Microsoft Azure Event Hub - Configuration in Azure Step 4.
    2023-01-10Revision 70: Updated Cisco Call Manager - Configure FortiSIEM to Receive CDR Records from Cisco Call Manager.
    2023-03-09Revision 71: Updated Microsoft Azure Audit - Create IP Range to Credential Association and Test Connectivity in FortiSIEM section.
    2023-04-10Revision 72: Updated Oracle WebLogic section.
    2023-05-10Revision 73: Updated Enable Office 365 Audit Log Search section for Microsoft Office 365 Audit.
    2023-06-14Revision 74: Updated Configuring FortiAnalyzer to Send Logs to FortiSIEM section for Fortinet FortiGate Firewall.
    2023-08-03Revision 75: Updated Blue Coat Web Proxy section.
    2023-09-14Revision 76: Updated Proofpoint section.
    2023-09-28Revision 77: Updated Microsoft Windows Server section.
    2023-10-17Revision 78: Updated Microsoft Office 365 Audit section.
    2024-02-07Revision 79: Added SQL Server 2022 support for Microsoft SQL Server. Added 7928 port entry for Supervisor Communication and Worker Communication in FortiSIEM Port Usage.
    2024-03-26Revision 80: Updated CLI command in Configuring FortiGate to send Syslog to FortiSIEM for FortiGate.
    Previous
    Next

    Change Log

    Change Log

    DateChange Description
    2018-05-23Initial version of the guide.
    2018-07-24 Revision 2 with a new section under Windows Server Configuration - Configuring Log Monitoring for Non-Administrative User.
    2018-08-07 Revision 3 with updated section: Fortinet FortiGate Firewall
    2018-09-12Revision 4 with updated section: Microsoft Azure Audit
    2018-09-26Revision 5 with updated section: WatchGuard Firebox Firewall
    2018-11-28Revision 6 with updated section: Fortinet FortiGate Firewall > Configuring SSH on FortiSIEM to communicate with FortiGate
    2019-01-29Revision 7: updated section: Cisco FireSIGHT
    2019-03-15Revision 8: new section: Threat Intelligence
    2019-03-28Revision 9: updates the guide to reflect the new menu hierarchy in the FortiSIEM tool.
    2019-04-24Revision 10: added Carbon Black Security Platform under End Point Security Software.
    2019-07-24Revision 11: updated integration instructions for Microsoft Office 365 Audit.
    2019-10-22Revision 12: added Clavister Firewall and FortiADC devices. Added Active Directory User Discovery section to Microsoft Active Directory device. Corrections to SQL Server DDL Event Creation Script and SQL Server Database Level Event Creation Script.
    2019-11-22Revision 13: added Zeek (Bro) installation instructions for Security Onion, Cyberoam FortiADC, Epic SecuritySIEM, FortiEDR, FortiNAC, FortiDeceptor, Microsoft Network Policy Server, TrendMicro Deep Discovery. Changed the name of Cisco FireAMP to Cisco AMP Cloud V0. Changed the name of Cisco AMP to Cisco AMP Cloud V1.
    2020-01-03Revision 14: added CradlePoint.
    2020-04-15Revision 15: added Alert Logic Iris API, AWS Kinesis, AWS Security Hub, Cisco Amp, GitLab Cli, Azure Event Hub, Azure Compute, McAfee ePolicy Orchestrator, LastLine, Imperva Securesphere Web App Firewall, Imperva Securesphere DB Security Gateway, Imperva Securesphere DB Monitoring Gateway, Green League WVSS, FortiInsight, Damballa Failsafe, AWS EC2, Cisco Fireamp, Novell Netware, Green League RSAS, Checkpoint SmartCenter, FortiTester, Cisco Viptela, MobileIron, Duo, Indegy Industrial Cybersecurity Suite, Netwrix, Darktrace DCIP, Hirschmann SCADA Firewalls and Switches.
    2020-07-22Revision 16: Edits to Cisco AMP Cloud V0 and Cisco AMP Cloud V1.
    2020-10-09Revision 17: Added Alcide io KAudit, Stormshield Network Security and Tigera Calico
    2020-12-18Revision 18: Added note to AWS CloudTrail API Configuration
    2021-01-05Revision 19: Added Mapping Active Directory User Attributes to FortiSIEM User Attributes.
    2021-02-03Revision 20: Updated Malwarebytes to Malwarebytes Endpoint Protection.
    2021-03-03Revision 21: Added NetApp Data ONTAP Supported Version.
    2021-03-18Revision 22: Added Claroty Continuous Threat Detection, Corero Smartwall Threat Defense, Dragos Platform, Malwarebytes Breach Remediation, Oracle Cloud Access Security Broker (CASB), Proofpoint.
    2021-04-05Revision 23: Updated Linux server section.
    2021-04-07Revision 24: Updated AWS Kinesis for 6.2.0.
    2021-04-16Revision 25: Updated Microsoft Office 365 Audit "Create the Office 365 API Credential" steps.
    2021-04-23Revision 26: Added Salesforce Configuration for 6.2.0, 6.1.x, 5.4.0, 5.3.x, 5.2.x releases.
    2021-07-06Revision 27: Added Security Orchestration and FortiGate SNMPv3 setup example. Updated: Cisco Firepower Threat Defense, Linux Server Rsyslog and Syslog-NG, AWS Security Hub, EC2 Cloudwatch API, AWS EC2 Discovery, Office365 API integration, Microsoft Azure Compute, Microsoft Windows Defender for Endpoint (Windows Defender ATP), Cisco IOS, Cisco FireSIGHT, Cisco Duo, Cisco FireAmp, Cisco Meraki Access Points, Rapid7 Nexpose, Rapid7 InsightVM, Google Workspace, Carbon Black Syslog setup, FortiManager syslog, FortiWeb syslog, FortiSandbox syslog, FortiAuthenticator syslog, FortiClient syslog, FortiADC syslog, FortiDeceptor syslog, FortiNAC syslog, FortiEDR syslog, FortiSOAR syslog. Environmental Sensors updated to Operational Technology, Syslog over TLS.
    New Device Support: Microsoft Windows Print Service Log, AWS Elasticsearch Load Balancer Log, CyberX OT/IoT Security via Log, Digital Defense Vulnerability Scanner via API, FortiAI via Log, FortiCASB integration via API, HP ILO via SNMP Trap, Palo Alto Cortex XDR via Log, Palo Alto WildFire via Log through Palo Alto Firewall.
    Device Support Extensions: CloudTrail Logs via AWS Kinesis, CyberArk Vault integration via REST API, FortiAnalyzer System Event Logs via Syslog, FortiEDR integration via API, FortiGate, FortiAP and FortiSwitch via FortiGate API, GCC High Tenant for Azure Audit, VPC Flog Logs via AWS Kinesis.
    2021-07-22Revision 28: Updated AWS Kinesis Configuration for Configuring AWS CloudTrail Logs through Kinesis Streams, and Configuring VPC Flow Logs through Kinesis Streams.

    2021-07-26

    		Revision 29: Updated Epilog/snare link for Oracle Database Server, Juniper Steel Belted RADIUS, and Apache Web Server configuration.
    2021-07-30Revision 30: Updated Tenable Nessus Vulnerability Scanner configuration.
    2021-08-02Revision 31: Updated Cisco FireSIGHT Configuration.
    2021-08-26Revision 32: Updated AWS EC2 CloudWatch API, Googe Workspace / GSUITE, Zeek Network Security Monitor (Previously Bro). Added Microsoft Advanced Threat Analytics (ATA) On Premise Platform, KVM, FortiProxy, Google Cloud Platform, Mac OS, Otorio RAM2, UserGate UTM Firewall to 6.3.1.
    2021-08-30Revision 33: Updated Microsoft SQL Server for 6.x Guides.
    2021-08-31Revision 34: Added Syslog CEF Format configuration to Check Point FireWall-1 for 6.3.1 Guide.
    2021-09-16Revision 35: Updated Dell Force10 Router and Switch, Dell NSeries Switch, and Dell PowerConnect Switch and Router for 6.3.1, and Microsoft Office 365 Audit for 6.3.x Guides.
    2021-09-17Revision 36: Updated MySQL Server and CyberArk Password Vault for 6.3.x Guides. Added example syslog for Dell Force10 Router and Switch, Dell NSeries Switch, and Dell PowerConnect Switch and Router for 6.3.1 Guide.
    2021-09-24Revision 37: Updated Squid Web Proxy with syslog configuration for versions 4.1.1 and later for 6.1.1-6.3.x Guides.
    2021-10-06Revision 38: Added ArubaOS-CX Switch platform, Barracuda Web Application Firewall, and Cisco Umbrella to 6.3.2 Guide.

    2021-10-08

    		Revision 39: Updated Microsoft Windows Server SNMP Configuration instructions and removed older Microsoft SQL Scripts for 6.3.x.
    2021-10-29Revision 40: Updated Cisco Firepower Management Center (FMC) - Formerly FireSIGHT and FirePower Threat Defense : Using Cisco eStreamer Client for 6.x Guides.
    2021-11-01Revision 41: Updated Configuring FortiSIEM through FortiOS REST API - Step 2: Create an Administrator Profile for 6.3.x.
    2021-11-08Revision 42: Updated Cisco Umbrella Prefix Configuration Information for 6.3.2.
    2021-11-16Revision 43: Updated FortiSIEM External Ports with sFlow port number and protocol from External Devices to Supervisor/Worker/Collector.
    2021-11-30Revision 44: Updated FortiSIEM External Ports Collector Communication table.
    2021-12-06Revision 45: Updated Enable WinRM and set authentication in Microsoft Windows Server.
    2021-12-08Revision 46: Updated Syslog over TLS section for 6.x.
    2021-12-23Revision 47: Google Cloud Platform configuration updated for 6.3.1 and later.
    2022-01-06Revision 48: SNMP V3 Traps section added.
    2022-01-11Revision 49: Microsoft Windows Server section updated with OMI for 6.3.3 and later.
    2022-01-13Revision 50: CrowdStrike Endpoint Security section updated for 6.2.x and later.

    2022-02-15

    Revision 51: Added Ports for OMI based monitoring and log collection in FortiSIEM External Ports section for 6.3.3 and later.

    2022-02-16

    		Revision 52: Added ServiceNow Security Operations to Security Orchestration for 6.3.0 and later.
    2022-02-24Revision 53: Updated Microsoft Defender for Endpoint for 6.3.0 and later.
    2022-03-01Revision 54: Added Flow Support section.
    2022-03-02Revision 55: Updated MySQL Server - Settings for MySQL Server JDBC Access Credentials for Database Auditing - Audit Table field.
    2022-03-18Revision 56: Microsoft Defender for Endpoint legacy information updated. Microsoft Defender for Endpoint moved from Cloud Applications section to End Point Security Software section.
    2022-03-22Revision 57: Configuring Tigera Calico to Send Logs link updated.
    2022-03-28Revision 58: Updated Microsoft Azure Audit Configuration section.

    2022-03-29

    		Revision 59: Updated Supported Devices and Applications by Vendor.
    2022-04-04Revision 60: Added Zscaler Cloud Firewall.
    2022-06-08Revision 61: Updated Setup in FortiSIEM section in Cisco Umbrella Configuration.
    2022-06-17Revision 62: FortiAI updated to FortiNDR.
    2022-07-13Revision 63: Updated Using Cisco eStreamer Client section in Cisco FireSIGHT and FirePower Threat Defence.
    2022-07-25Revision 64: Updated Microsoft Exchange.
    2022-08-09Revision 65: Updated Configuring FortiSIEM for Sophos Central for API Access.

    2022-09-07

    		Revision 66: Updated FortiSIEM External Ports section.
    2022-09-15Revision 67: Updated FortiSIEM External Ports section.
    2022-10-31

    Revision 68: Updated Citrix Netscaler Application Delivery Controller (ADC) Configuration section.

    2022-12-22Revision 69: Updated Microsoft Azure Event Hub - Configuration in Azure Step 4.
    2023-01-10Revision 70: Updated Cisco Call Manager - Configure FortiSIEM to Receive CDR Records from Cisco Call Manager.
    2023-03-09Revision 71: Updated Microsoft Azure Audit - Create IP Range to Credential Association and Test Connectivity in FortiSIEM section.
    2023-04-10Revision 72: Updated Oracle WebLogic section.
    2023-05-10Revision 73: Updated Enable Office 365 Audit Log Search section for Microsoft Office 365 Audit.
    2023-06-14Revision 74: Updated Configuring FortiAnalyzer to Send Logs to FortiSIEM section for Fortinet FortiGate Firewall.
    2023-08-03Revision 75: Updated Blue Coat Web Proxy section.
    2023-09-14Revision 76: Updated Proofpoint section.
    2023-09-28Revision 77: Updated Microsoft Windows Server section.
    2023-10-17Revision 78: Updated Microsoft Office 365 Audit section.
    2024-02-07Revision 79: Added SQL Server 2022 support for Microsoft SQL Server. Added 7928 port entry for Supervisor Communication and Worker Communication in FortiSIEM Port Usage.
    2024-03-26Revision 80: Updated CLI command in Configuring FortiGate to send Syslog to FortiSIEM for FortiGate.
    Previous
    Next