FortiAnalyzer
=============

FortiAnalyzer
-------------

.. rubric:: Details

===========================  ==========================================
Author                       Energy SOAR
Version                      1.0
License                      AGPL-V3
Requires Registration        No
Requires Subscription        No
Free Subscription Available  No
DataType Supported           ip, domain, url, hash, mail, other
===========================  ==========================================

.. rubric:: Description

Use FortiAnalyzer as a log, event and security telemetry source in Energy SOAR investigations.
The analyzer can retrieve incident context, search indexed security events and enrich observables with data correlated from Fortinet infrastructure.

.. rubric:: Configuration

===========================  ===========================================================
Name                         Description
base_url                     FortiAnalyzer URL
username                     Username with permission to query incidents and logs
password                     Password or API credential for FortiAnalyzer
verify_ssl                   Verify server certificate
adom                         Administrative domain used for log and event scope
===========================  ===========================================================