FortiAnalyzer

Course Description

In this 1-day class, students will learn the fundamentals of using FortiAnalyzer 5.4.2 for centralized logging and reporting. Students will learn how to configure and deploy FortiAnalyzer, and identify threats and attack patterns through logging, analysis, and reporting. Finally, students will examine some helpful troubleshooting techniques.

In the interactive labs, students will explore administration and management; register devices for log collection with FortiAnalyzer; use FortiAnalyzer to centrally collect logs; perform a forensic analysis of logs based on simulated network attacks; create reports; and explore solutions to common misconfiguration issues.

Formats

  • Instructor-led classroom
  • Instructor-led online*
  • Self-paced online

* Private class only. Please contact your Fortinet Sales Representative.

Product Versions

FortiAnalyzer 5.4.2

Agenda

  1. Introduction and Initial Configuration
  2. Administration and Management
  3. Device Registration and Communication
  4. Logging
  5. Reports

Objectives

After completing this course, you will be able to:

  • Describe key features and concepts of FortiAnalyzer
  • Deploy an appropriate architecture
  • Use administrative access controls
  • Monitor administrative events and tasks
  • Manage ADOMs
  • Configure RAID
  • Register supported devices
  • Troubleshoot communication issues
  • Manage disk quota
  • Manage registered devices
  • Protect log information
  • View and search logs
  • Troubleshoot and manage logs
  • Monitor events
  • Generate and customize reports
  • Customize charts and datasets
  • Manage reports
  • Troubleshoot reports

Who Should Attend

Anyone who is responsible for day-to-day management of a FortiAnalyzer appliance and FortiGate security information.

Prerequisites

  • Familiarity with all topics presented in the FortiGate I and FortiGate II courses 
  • Knowledge of the SQL 'select' syntax is helpful

System Requirements

If you take the online version of this class, you must have a computer with:

  • High-speed Internet connection
  • Up-to-date web browser
  • PDF viewer
  • Speakers / headphones
  • Either:
    • HTML 5 support or
    • Up-to-date Java runtime environment (JRE) with Java plugin enabled in your web browser

Wired Ethernet connection (not Wi-Fi) is recommended. Firewalls including Windows Firewall or FortiClient must allow connections with the online labs.

Certification

This course will help you to prepare for the FortiAnalyzer Specialist exam. 

NSE 5 Network Security Analyst certification requires passing at least two NSE 5 Specialist exams.

Learn more about the NSE 5 Certification.

How to Enroll

Click the link here and navigate to the NSE 5 section.