FortiAnalyzer Centralized Logging, Analysis, and Reporting
Enhanced Visibility With FortiAnalyzer Platforms
FortiAnalyzer platforms integrate network logging, analysis, and reporting into a single system, delivering increased knowledge of security events throughout your network.
They provide organizations of any size with centralized security event analysis, forensic research, reporting, content archiving, data mining, malicious file quarantining
and vulnerability management. Centralized collection, correlation, and analysis of geographically and chronologically diverse security data from Fortinet appliances and
third-party devices deliver a simplified, consolidated view of your security posture.
The FortiAnalyzer family minimizes the effort required to monitor and maintain acceptable use policies, as well as identify attack patterns to help you fine tune your
policies. In addition, FortiAnalyzer platforms provide detailed data capture for forensic purposes to comply with policies regarding privacy and disclosure of information
security breaches.
What is FortiAnalyzer and Use Cases for it
The purpose of this video is to give a brief description for FortiAnalyzer and the use cases for FortiAnalyzer. FortiAnalyzer is Fortinet’s Security Driven Analytics and Log Management Solution. FortiAnalyzer offers organizations a way to centrally aggregate Fortinet logs in a central location, automate workflows and compliance reporting, and detect advanced threats.
Security Event Information Management
You can put time back in your day by deploying a FortiAnalyzer platform into your security infrastructure, creating a single view of your security events, archived content,
and vulnerability assessments. FortiAnalyzer platforms accept a full range of data from Fortinet solutions, including traffic, event, virus, attack, content filtering, and email
filtering data.
It eliminates the need to manually search multiple log files or manually analyze multiple consoles when performing forensic analysis or network auditing.
A FortiAnalyzer platform’s central data archiving, file quarantine and vulnerability assessment further reduce the amount of time you need to spend managing the range
of security activity in your enterprise or organization.
Network Event Correlation |
Allows IT administrators to more quickly identify and react to network security threats across the network. |
Streamlined Graphical Reports |
Provides network-wide reporting of events, activities and trends occurring on FortiGate® and third party devices. |
Scalable Performance and Capacity |
FortiAnalyzer family models support thousands of FortiGate and FortiClient™ agents. |
Centralized Logging of Multiple Record Types |
Including traffic activity, system events, viruses, attacks, Web filtering events, and messaging activity/data. |
Seamless Integration with the Fortinet Product Portfolio |
Tight integration maximizes performance and allows FortiAnalyzer resources to be managed from FortiGate or FortiManager™ user interfaces. |
Vulnerability Management
Fortinet offers an enhanced scanning capability that utilizes a dynamic signature dataset to detect devices on your network, catalog vulnerabilities, and recommend remediation.
Additional capabilities include device discovery, mapping, asset definition and prioritization, and customized reporting. An optional Vulnerability Management subscription provides frequent updates developed by the FortiGuard Labs with up-todate vulnerability scan data to keep abreast of current threats.