You can group devices into log groups. You can view FortiView summaries, display logs, generate reports, or create handlers for a log group. Log groups are virtual so they do not have SQL databases or occupy additional disk space.
In FortiAnalyzer 5.0.6 and earlier, you can treat log groups as a single device that has its own SQL database. You cannot do this in FortiAnalyzer 5.2 and later.
When you add a device with VDOMs to a log group, all VDOMs are automatically added.
To create a new log group:
- Go to Log View > Log Group.
- In the content pane toolbar, click Create New.
- In the Create New Log Group dialog box, type a log group name and add devices to the log group.
- Click OK.