TOIT Training

Fortinet NSE 5 - FortiAnalyzer (NSE5_FAZ-7.X)

Fortinet NSE 5 - FortiAnalyzer (NSE5_FAZ-7.X)
  • Overview
  • Curriculum
  • Reviews

COURSE OUTLINE

01. Introduction and Initial Configuration
  • Key Features and Concepts
  • Centralized Log Repository
  • Reports, Events and Content Archiving
  • DataBase Language Supprt
  • FortiAnalyzer Operating Modes
  • Security Fabric Logging
  • FortiAnalyzer Fabric
  • Adminitrative Domains (ADOMs)
  • Available Tools
02. Logging
  • Purpose of Logging
  • Log Storage Regulations
  • Log Type by Device
  • LogFile WorkFlow
  • LogView
  • Summary DashBoard
  • Searching
  • Saving Frequent Searches
  • Application Logs
  • FortiView
  • Using Information on a Widget
  • Indicators of Compromise
  • IOC Compromised host
  • Monitors Pane
  • Using information on Widget
  • Retrieveing Archived Logs
  • Log Fetching
  • Fabric View
  • Asset Center
  • Identiy Center
  • Troubleshooting and Managing Logs
  • Gathering LogRate and Device Usage Stats
  • Insert Rate vs Recieve Rate
03. FortiSoC—Incidents and Events
  • FortiSoc Features
  • Management Extensions
  • Dashboards
  • Events Dashboards
  • Incident Dashboards
  • Playbook Dashboards
  • Events Generated
  • Managing Event Handlers
  • Matching Filters
  • Generic Text Filters
  • Event Details
  • Event Notifications
  • Event Status
  • Exporting and Importing Event Handlers
  • Managing Events
  • Managing Incidents
  • Creating an Incident
  • Analyzing an Incident
  • Editing an Incident
  • Configuring Incident Settings
  • Threat Hunting and Outbreak Alerts
  • Threat Huntinglog Count Chart
  • SIEM Log Analytics Table
  • Threat Hunting Example
  • Outbreak Detection Service OverView
  • Outbreak Alert Handlers and Reports
04. FortiSoC—Playbooks
  • Playbook Components
  • Why Automation
  • Example Automation
  • Playbook Concepts
  • Triggers
  • Connectors
  • Tasks
  • Creating Playbook from Template
  • Customizing Playbooks Settings
  • Creating a New Playbook
  • Using Variable in Tasks
  • Managing Playbooks
  • Monitoring Playbooks
  • Exporting Playbooks
  • Importing Playbooks

Skills Learned

After completing this online training course, students will be able to:

  • Setup Initial Access

  • Perform Logging

  • Create Reports

  • Work with Playbooks

  • 2h 9m Duration
Expand All

0

0 Ratings
5 Star 0%
4 Star 0%
3 Star 0%
2 Star 0%
1 Star 0%

Reviews

Free

Start Course

Retake Course

Are you sure you want to retake the course? This action will permanently delete all your progress in this course.

Course Includes

  • Overview

    This online instructor led training course provides the foundational knowledge and skills to use FortiAnalyzer for centralized logging and reporting. Students will learn how to configure and deploy FortiAnalyzer, and identify threats and attack patterns through logging, analysis, and reporting

    Exam: Fortinet NSE 5 – FortiAnalyzer 7.x

Deleting Course Review

Are you sure? You can't restore this back

Course Access

This course is password protected. To access it please enter your password below:

Buy for group

Fortinet NSE 5 - FortiAnalyzer (NSE5_FAZ-7.X)
No groups Found

You don't have any groups yet

Create a group and add group members. Sync Group(s)