Quién debería asistir
Anyone who is responsible for day-to-day management of a FortiAnalyzer appliance and FortiGate security information.
Prerrequisitos
- Familiarity with all topics presented in the FortiGate I - NSE 4 - The Administration, Content Inspection and SSL VPN, FortiOS Version 5.4.1 (SECI) and FortiGate II - NSE 4 - The Secured Network Deployment and IPSec VPN course, FortiOS Version 5.4.1 (SECII) courses
- Knowledge of the SQL 'select' syntax is helpful
Objetivos del curso
In this 1-day class, you will learn how to use FortiAnalyzer. You will explore setup, registering supported devices and securing communications, managing logs and archives, and configuring both predefined and customized reports.
This course provides a solid understanding of how to integrate FortiAnalyzer into your network awareness infrastructure.
After completing this course, you will be able to:
- Describe key features and concepts of FortiAnalyzer
- Deploy an appropriate architecture
- Manage ADOMs on both FortiAnalyzer and the devices that log to it
- Configure RAID
- Register supported devices
- Encrypt log transmission (SSL / IPSec)
- View & analyze current and historical logs (FortiView)
- Monitor events
- Apply disk quotas to log data from devices
- Backup, restore, and forward log data
- Use content archiving (summary and full)
- Understand the different stages of data processing, from receiving logs to compiling reports
- Understand SQL queries and datasets used by FortiAnalyzer reports
- Design datasets, charts, and custom reports
- Generate reports by schedule or on demand
Contenido del curso
- Introduction to FortiAnalyzer
- Configuration & Administration
- Device Registration
- Logs & Archives
- Reports