Applies to: Critical Application version 6.2.0 and later
FortiManager appliance allows you to centrally manage many Fortinet devices from a few to thousands, including FortiGate, FortiWiFi, FortiCarrier, FortiMail, and FortiAnalyzer appliances and virtual appliances, as well as FortiClient endpoint security agents.
EventTracker, when integrated with FortiManager, enables users to view critical information related to activities performed in FortiManager or other Fortinet devices. This information is represented in the form of report, alert and graphical/ pictorial representation(dashboard).
Flex reports contain a detailed overview of activities like managed-devices login/ logout, login failed, deployment manager events, events associated with high availability for Forti devices, etc.
Alerts are provided as soon as any critical events are triggered by FortiManager. Such as, login failed, system/ managed device unexpected reboot and shutdown, etc.
From visual representation/ overview of top activities being performed in FortiManager to unauthorized user access (failed) can be viewed on EventTracker ‘dashboard’.
EventTracker monitors all the FortiManager events from services like system manager, Fortiguard service events, managed device operations, etc., they are given as below.
Once FortiManager is configured to deliver events to EventTracker Manager; alerts, dashboards, and reports can be configured into EventTracker.
The configuration details are consistent with EventTracker version 9.x and later, and FortiManager v6.2.0 and later.
To configure FortiManager to send logs to EventTracker, refer to the How-to Guide.