20 Questions
Which logs generate events in FortiAnalyzer?
Only logs matching specified criteria
What determines if an event needs to be created in FortiAnalyzer?
Event handlers
Can event handlers in FortiAnalyzer be customized?
Yes, they can be cloned and customized
Where can you view the generated events in FortiAnalyzer?
Event Monitor
What are the criteria used by event handlers to generate events in FortiAnalyzer?
Threat type, device type, log type, among others
How can you manage event handlers in FortiAnalyzer?
Enable, disable, clone, and customize them
What do event handlers look for in the logs in FortiAnalyzer?
Specific conditions
What types of events can be generated in FortiAnalyzer?
Endpoint, threat, and system events
Are all logs received by FortiAnalyzer used to generate events?
No, only logs matching specified criteria
Can predefined event handlers in FortiAnalyzer be customized?
Yes, they can be cloned and customized
Which of the following can be used to customize event handlers?
Both A and B
What are the matching criteria for event handlers?
Devices, subnets, pre-filters, and log type/subtype
What is the purpose of pre-filters in event handlers?
To exclude certain logs from being matched by other filters
What does the second section of event handlers consist of?
Details that will be added to the events generated
What do generic text filters allow in event handlers?
More precise and flexible control over which logs will trigger an event
What can be included in custom messages in event handlers?
Variables and log fields
What can be done with event information in notifications?
Include it in emails, SNMP traps, fabric connectors, or syslog server
What is required to use notification methods for event information?
Setting up a back end, such as an email server
What is the purpose of a prefilter in event handlers?
To exclude certain logs from being matched by other filters
Which of the following is NOT a matching criteria for event handlers?
Log frequency
Test your knowledge on how events are generated in FortiAnalyzer. Learn about the criteria, filters, and event handlers involved in the process. Explore the use of analytics logs and discover the variety of predefined event handlers available.
Make Your Own Quizzes and Flashcards
Convert your notes into interactive study material.
Get started for free