Applies To: FortiAnalyzer 4.0, 5.0 and later.
FortiAnalyzer logs and analyzes aggregated log data from Fortinet devices and other syslog-compatible devices. EventTracker examines this collective of logs and leverage machine learning to identify critical events, suspicious network traffic, configuration changes and user behaviour analytics.
EventTracker Enterprise gathers and examines acquired logs to identify about administrator logon, network file sharing,resources monitored, devices added, changed and modified.
EventTracker Knowledge Pack for FortiAnalyzer allows you to monitor the following:-
Once FortiAnalyzer is configured to deliver events to EventTracker Manager; Alerts, Dashboards and Reports can be configured into EventTracker.
Some of the Knowledge Packs available in EventTracker are listed below. For more information please refer Integration Guide.
The configuration details are consistent with EventTracker Enterprise version 7.X and later, and FortiAnalyzer 4.0 , 5.0 and later.
For more information please refer to the Integration Guide.