FortiAnalyzer
FortiAnalyzer
Details
Author |
Energy SOAR |
Version |
1.0 |
License |
AGPL-V3 |
Requires Registration |
No |
Requires Subscription |
No |
Free Subscription Available |
No |
DataType Supported |
ip, domain, url, hash, mail, other |
Description
Use FortiAnalyzer as a log, event and security telemetry source in Energy SOAR investigations. The analyzer can retrieve incident context, search indexed security events and enrich observables with data correlated from Fortinet infrastructure.
Configuration
Name |
Description |
base_url |
FortiAnalyzer URL |
username |
Username with permission to query incidents and logs |
password |
Password or API credential for FortiAnalyzer |
verify_ssl |
Verify server certificate |
adom |
Administrative domain used for log and event scope |