Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY 26.2.1
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
All Products
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Web Application Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • Web Application / API Protection
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions
    • All Products

    Administration Guide

    Home FortiSOC Cloud Administration Guide

    Global settings

    Global settings

    The Global Settings for FortiSOC are accessed from the Settings icon in the banner.

    The following settings can be managed from Global Settings > System.

    System Configuration

    Tab

    Description

    General

    Configure general options for the FortiSOC instance, including the language, theme, and datetime format.

    Application Configuration

    Configure various application options, including purge criteria for audit logs, playbook recovery, playbook log movement, and more.

    Log Forwarding

    Enable log forwarding for FortiSOC application and audit logs to your central log management server.

    Evironment Variable

    Configure environment variables to be set for playbooks and connectors.

    Branding

    Customize FortiSOC branding by configuring logo settings, product name, company name, and more.

    System Fixtures

    View the links to email templates and the self agent and self tenant pages, which are included by default with FortiSOC.

    Advanced Development Features

    Review the associated risks and usage guidelines for creating or updating custom connectors and widgets. Then, based on organizational needs, provide explicit consent to enable users to create new connectors or widgets or update existing ones.
    Audit Log

    View the historical record of activities across FortiSOC using the audit logs. The audit logs are displayed in a grid view and can be searched, filtered, and exported according to your needs.

    License Manager

    View the details about your FortiSOC licensing. This includes the license expiry, daily ingestion, analytics retention, and archive retention.

    Notifications

    Manage Delivery Rules and Notification Channels. Notification Delivery Rules define the conditions to generate notifications. For example, a rule, "High Severity Email Notifications" can be set up to send email notifications (using the Email Channel) for all newly created alerts with High or Critical Severity. Notification Channels define various modes of communicating notifications, such as in-app notifications and email notifications.

    Data Archival

    Review the preferred archive destination and medium and view archived records. You can use one of or a combination of the following methods for data archival:

    • External database

    • Internal database

    • Syslog forwarding

      Data archived using only Syslog Forwarding cannot be searched within the Archival Search tab.

    Previous
    Next

    Global settings

    Global settings

    The Global Settings for FortiSOC are accessed from the Settings icon in the banner.

    The following settings can be managed from Global Settings > System.

    System Configuration

    Tab

    Description

    General

    Configure general options for the FortiSOC instance, including the language, theme, and datetime format.

    Application Configuration

    Configure various application options, including purge criteria for audit logs, playbook recovery, playbook log movement, and more.

    Log Forwarding

    Enable log forwarding for FortiSOC application and audit logs to your central log management server.

    Evironment Variable

    Configure environment variables to be set for playbooks and connectors.

    Branding

    Customize FortiSOC branding by configuring logo settings, product name, company name, and more.

    System Fixtures

    View the links to email templates and the self agent and self tenant pages, which are included by default with FortiSOC.

    Advanced Development Features

    Review the associated risks and usage guidelines for creating or updating custom connectors and widgets. Then, based on organizational needs, provide explicit consent to enable users to create new connectors or widgets or update existing ones.
    Audit Log

    View the historical record of activities across FortiSOC using the audit logs. The audit logs are displayed in a grid view and can be searched, filtered, and exported according to your needs.

    License Manager

    View the details about your FortiSOC licensing. This includes the license expiry, daily ingestion, analytics retention, and archive retention.

    Notifications

    Manage Delivery Rules and Notification Channels. Notification Delivery Rules define the conditions to generate notifications. For example, a rule, "High Severity Email Notifications" can be set up to send email notifications (using the Email Channel) for all newly created alerts with High or Critical Severity. Notification Channels define various modes of communicating notifications, such as in-app notifications and email notifications.

    Data Archival

    Review the preferred archive destination and medium and view archived records. You can use one of or a combination of the following methods for data archival:

    • External database

    • Internal database

    • Syslog forwarding

      Data archived using only Syslog Forwarding cannot be searched within the Archival Search tab.

    Previous
    Next