Version: FortiAnalyzer 4.0, 5.0 and later.

FortiAnalyzer logs and analyzes aggregated log data from Fortinet devices and other syslog-compatible devices. Netsurion Open XDR examines this collective of logs and leverage machine learning to identify critical events, suspicious network traffic, configuration changes and user behaviour analytics.

Netsurion Open XDR gathers and examines acquired logs to identify about administrator logon, network file sharing, resources monitored, devices added, changed and modified.

Netsurion Data Source Integration for FortiAnalyzer allows you to monitor the following:-

  • Operations – Backup and restore activity, Device management, Resource Monitoring, User management and System management and Network share management.
  • Security – IPsec activity.
  • Compliance – Administrator logon activity, Administrator logon failed activity and Configuration changes activity.

Once FortiAnalyzer is configured to deliver events to Netsurion Open XDR Manager; Alerts, Dashboards and Reports can be configured into Netsurion Open XDR.

To take advantage of this data source integration and to learn more about alerts, reports, and dashboards, contact your Technical Account Manager (TAM). If you are not currently a Netsurion customer or partner, contact us to learn more.