Purpose: This is an open forum for any and all questions related to the use of FortiSIEM in support of optimal Security, Performance and Compliance management.
How it works: This is meant to be an open conversation by any and all with an interest and/or expertise to share their questions and to allow the sharing of ideas.
If you have any problems with this thread or want to report abuse, please contact:
Sr. Director - Security Operations Solutions
Looking for advice on whether I should purchase the Basic Windows Agent or not. What specifically will the basic agent give me that I am not getting from my Fortigates, ASA's, Routers and Switches?
Beginning in Q4 2017 we will be retiring "Basic" Windows Agents. See attached for the benefits of the Advanced Windows Agent.
I have looked through the API Reference guide, and the API seems pretty limited. Is there a query I can run in order to get the status of devices from the CMDB - specially if the device is showing as up or down within FortiSIEM.
Additionally, is there a published road map for FortiSIEM features?
After you’ve created or an edited a rule, you should test it to see if behave as expected before you activate it. This topic describes how to test a rule using synthetic events. Assignment Writing Help