Fortinet black logo

New Features

Home FortiClient 7.0.0 New Features

FortiGuard Outbreak Alerts service 7.0.1

7.0.0
7.2.0
7.0.0
6.4.0
6.2.3
6.2.2
6.2.1
6.2.0
Copy Link
Copy Doc ID c7e1b029-a797-11eb-b70b-00505692583a:453529
Download PDF

FortiGuard Outbreak Alerts service 7.0.1

When a new outbreak is discovered in the field, Fortinet releases a new FortiGuard package. This process is as follows:

  1. Fortinet creates and tests a new FortiGuard outbreak alert rule.
  2. Fortinet packages the rule into a FortiGuard object.
  3. Fortinet uploads the object to the FortiGuard server.
  4. EMS downloads the object from FortiGuard.
  5. EMS processes the rule and installs it.
  6. If FortiClient detects the outbreak in an endpoint as per the new rule, it tags it accordingly.
  7. The EMS administrator can use the outbreak alert tag to quarantine endpoints where FortiClient has detected the outbreak.

A maximum of ten FortiGuard outbreak alert rules can be enabled at the same time.

You can enable the FortiGuard Outbreak Alerts Service widget on the dashboard to see outbreak alert details.

You can drill down from this widget to see the list of affected endpoints. You can quarantine endpoints from this pane.

The endpoint summary page also shows any FortiGuard outbreak alert tags applied to the endpoint.

Previous
Next

FortiGuard Outbreak Alerts service 7.0.1

When a new outbreak is discovered in the field, Fortinet releases a new FortiGuard package. This process is as follows:

  1. Fortinet creates and tests a new FortiGuard outbreak alert rule.
  2. Fortinet packages the rule into a FortiGuard object.
  3. Fortinet uploads the object to the FortiGuard server.
  4. EMS downloads the object from FortiGuard.
  5. EMS processes the rule and installs it.
  6. If FortiClient detects the outbreak in an endpoint as per the new rule, it tags it accordingly.
  7. The EMS administrator can use the outbreak alert tag to quarantine endpoints where FortiClient has detected the outbreak.

A maximum of ten FortiGuard outbreak alert rules can be enabled at the same time.

You can enable the FortiGuard Outbreak Alerts Service widget on the dashboard to see outbreak alert details.

You can drill down from this widget to see the list of affected endpoints. You can quarantine endpoints from this pane.

The endpoint summary page also shows any FortiGuard outbreak alert tags applied to the endpoint.

Previous
Next