FortiAnalyzer - New Features Guide Version 6.2.3 FORTINET DOCUMENT LIBRARY https://docs.fortinet.com
FORTINET VIDEO GUIDE https://video.fortinet.com
FORTINET BLOG https://blog.fortinet.com
CUSTOMER SERVICE & SUPPORT https://support.fortinet.com
FORTINET TRAINING & CERTIFICATION PROGRAM https://www.fortinet.com/support-and-training/training.html
NSE INSTITUTE https://training.fortinet.com
FORTIGUARD CENTER https://fortiguard.com/
END USER LICENSE AGREEMENT https://www.fortinet.com/doc/legal/EULA.pdf
FEEDBACK Email: [email protected]
March 18, 2020 FortiAnalyzer 6.2.3 New Features Guide 05-623-528940-20200318 TABLE OF CONTENTS
Change Log 4 FortiAnalyzer 6.2.3 New Features Guide 5 Other 6 Self-Harm Report for education 6 Using FortiNAC data in FortiAnalyzer reports 8
FortiAnalyzer 6.2.3 New Features Guide 3 Fortinet Technologies Inc. Change Log
Date Change Description
2020-01-14 Initial release.
2020-03-18 Added Using FortiNAC data in FortiAnalyzer reports on page 8.
FortiAnalyzer 6.2.3 New Features Guide 4 Fortinet Technologies Inc. FortiAnalyzer 6.2.3 New Features Guide
This document describes the new features added to FortiAnalyzer 6.2.3. The FortiAnalyzer new features are organized into the following categories:
l Other on page 6
FortiAnalyzer 6.2.3 New Features Guide 5 Fortinet Technologies Inc. Other
This section lists the other new features added to FortiAnalyzer. List of new features:
l Self-Harm Report for education on page 6
l Using FortiNAC data in FortiAnalyzer reports on page 8
Self-Harm Report for education
The Self-Harm and Risk Indicators Report monitors risky terms and phrases across all platforms. The report template contains the following sections:
l Risky Term distribution across Platforms
l Top 10 Users logged with Risky Terms or Phrases
l Top 10 Users at Risk
l Top 10 Users with Risky Terms or Phrases
l Top 50 Risky Terms across the Time Frame
l Top 10 Users with Risky Terms or Phrases in Searches
l Top 50 Risky Terms used in Searches
l Top 10 Users with Risky Terms or Phrases in Facebook
l Top 10 Users with Risky Terms used in Tweets
l Top 50 Risky Terms used in Tweets
l Top 10 Users with Risky Terms used in Gmail Subjects and Google Chat
l Top 50 Risky Terms used in Gmail Subjects and Google Chat Messages
FortiAnalyzer 6.2.3 New Features Guide 6 Fortinet Technologies Inc. Other
To view the Self-Harm and Risk Indicators Report template:
1. Go to Reports > Templates, then search for Self-Harm and Risk Indicators Report.
2. In the Preview column, click the HTML or PDF link to view sample output for the report.
FortiAnalyzer 6.2.3 New Features Guide 7 Fortinet Technologies Inc. Other
3. Click All Reports to edit, run, or view a completed report.
4. Click the Layout tab in the report, then double-click a chart to customize it.
Using FortiNAC data in FortiAnalyzer reports
When authorized on FortiAnalyzer, FortiNAC sends data to FortiAnalyzer which can be used in reports.
FortiAnalyzer 6.2.3 New Features Guide 8 Fortinet Technologies Inc. Other
To create FortiNAC reports on FortiAnalyzer:
1. Configure FortiNAC to send logs to FortiAnalyzer. Log in to FortiNAC and configure log receivers from System > Settings > System Communication > Log Receivers, and click Add.
2. On FortiAnalyzer, authorize the FortiNAC device on a Fabric ADOM.
3. Create a new dataset. a. Go to Reports > Report Definitions > Datasets, and click Create New. b. Configure the dataset, including selecting a FortiNAC log type from the dropdown. c. Click OK.
4. Create a new chart using the dataset. a. Go to Reports > Report Definitions > Chart Library, and click Create New. b. Configure the chart, including selecting the previously configured dataset.
FortiAnalyzer 6.2.3 New Features Guide 9 Fortinet Technologies Inc. Other
c. Click OK.
5. Create a new template using the chart. a. Go to Reports > Report Definitions > Templates, and click Create New. b. Configure the template fields as desired. c. Click Insert Chart, and locate the previously configured chart to insert it into the template. d. Click OK.
6. Create a report using the template. a. Go to Reports > Report Definitions > All Reports, and click Create New. b. Configure the report details as desired. c. Click From Template, and select the previously created template.
FortiAnalyzer 6.2.3 New Features Guide 10 Fortinet Technologies Inc. Other
d. Click OK.
7. Generate and view the report.
FortiAnalyzer 6.2.3 New Features Guide 11 Fortinet Technologies Inc. Copyright© 2020 Fortinet, Inc. All rights reserved. Fortinet®, FortiGate®, FortiCare® and FortiGuard®, and certain other marks are registered trademarks of Fortinet, Inc., in the U.S. and other jurisdictions, and other Fortinet names herein may also be registered and/or common law trademarks of Fortinet. All other product or company names may be trademarks of their respective owners. Performance and other metrics contained herein were attained in internal lab tests under ideal conditions, and actual performance and other results may vary. Network variables, different network environments and other conditions may affect performance results. Nothing herein represents any binding commitment by Fortinet, and Fortinet disclaims all warranties, whether express or implied, except to the extent Fortinet enters a binding written contract, signed by Fortinet’s General Counsel, with a purchaser that expressly warrants that the identified product will perform according to certain expressly-identified performance metrics and, in such event, only the specific performance metrics expressly identified in such binding written contract shall be binding on Fortinet. For absolute clarity, any such warranty will be limited to performance in the same ideal conditions as in Fortinet’s internal lab tests. In no event does Fortinet make any commitment related to future deliverables, features or development, and circumstances may change such that any forward-looking statements herein are not accurate. Fortinet disclaims in full any covenants, representations, and guarantees pursuant hereto, whether express or implied. Fortinet reserves the right to change, modify, transfer, or otherwise revise this publication without notice, and the most current version of the publication shall be applicable.