In this 1-day class, you will learn how to use FortiAnalyzer. You will explore setup, registering supported devices and securing communications, managing logs and archives, and configuring both predefined and customized reports.

This course provides a solid understanding of how to integrate FortiAnalyzer into your network awareness infrastructure.

Associated Certification:

This course is part of preparation for the NSE 5 certification exam.

After completing these courses, you will be able to:

• Describe key features and concepts of FortiAnalyzer
• Deploy an appropriate architecture
• Manage ADOMs on both FortiAnalyzer and the devices that log to it
• Configure RAID
• Register supported devices
• Encrypt log transmission (SSL / IPSec)
• View & analyze current and historical logs (FortiView)
• Monitor events
• Apply disk quotas to log data from devices
• Backup, restore, and forward log data
• Use content archiving (summary and full)
• Understand the different stages of data processing, from receiving logs to compiling reports
• Understand SQL queries and datasets used by FortiAnalyzer reports
• Design datasets, charts, and custom reports
• Generate reports by schedule or on demand

• Introduction to FortiAnalyzer
• Configuration & Administration
• Device Registration
• Logs & Archives
• Reports

• Anyone who is responsible for day-to-day management of a FortiAnalyzer appliance and FortiGate security information.

• Familiarity with all topics presented in the FortiGate I and FortiGate II courses
• Knowledge of the SQL ‘select’ syntax is helpful