Armis utilizes existing management platforms and passive traffic monitoring to discover and identify every device in any environment enterprise, medical, industrial, and more. Armis then analyzes device behavior and detects vulnerabilities to identify risks and threats.
Support Added: FortiSIEM 6.5.0-7.0.1 via Content Update
Vendor Version Tested: Not Provided
Product: The Asset Intelligence and Security Platform
Product Information: https://www.armis.com/platform/
In ADMIN > Device Support > Event Types, search for "Armis" to see the event types associated with this device.
Go to RESOURCES > Rules and search for "Armis" in the main content panel Search... field.
There are no predefined reports for the Armis Asset Intelligence Platform.
To configure the Armis Asset Intelligence Platform with FortiSIEM, take the following steps.
From the ARMIS GUI, navigate to Integrations > Library > Connect SIEM Integration.
In the Name field, enter the name of your FortiSIEM.
From the Connection Type drop-down list, select UDP.
In the Address field, enter the IP address of your FortiSIEM.
In the Port field, enter 514.
- From the Message Format drop-down list, select CEF.
- Click Test connection to validate.