In this 1-day class, you will learn how to use FortiAnalyzer. You will explore setup, registering supported devices and securing communications, managing logs and archives, and configuring both predefined and customized reports. This course provides a solid understanding of how to integrate FortiAnalyzer into your network awareness infrastructure. This course is part of preparation for the NSE 5 certification exam.
The ideal student will have: Familiarity with all topics presented in the FortiGate I and FortiGate II courses. Knowledge of the SQL 'select' syntax is helpful. Preparation for this course is best achieved through completion of the NSE 4 certification consisting of the FortiGate I and FortiGate II courses. System Requirements To access online content, students must have a computer with: A high-speed Internet connection An up-to-date web browser A PDF viewer Speakers or headphones (Optionally) a Java runtime environment (JRE)
This course is intended for networking and security professionals involved in the day-to-day management of a FortiAnalyzer appliance and FortiGate security information.
After completing this course, you will be able to: Describe key features and concepts of FortiAnalyzer Deploy an appropriate architecture Manage ADOMs on both FortiAnalyzer and the devices that log to it Configure RAID Register supported devices Encrypt log transmission (SSL / IPSec) View & analyze current and historical logs (FortiView) Monitor events Apply disk quotas to log data from devices Backup, restore, and forward log data Use content archiving (summary and full) Understand the different stages of data processing, from receiving logs to compiling reports Understand SQL queries and datasets used by FortiAnalyzer reports Design datasets, charts, and custom reports Generate reports by schedule or on demand