Fortinet black logo

New Features

Drill-down to Log View from Events

Copy Link
Copy Doc ID bc40d227-4cc1-11e9-94bf-00505692583a:962014
Download PDF

Drill-down to Log View from Events

Up to 100 logs related to each event can be stored and viewed in Event Manager. Previously, if more logs are needed over a wider time window, or similar activity on other endpoints needs to be checked, a user must navigate to Log View, determine the correct out filters, then manually enter them to find the logs that they are looking for. This feature adds drill-down capabilities in Event Manager that will automatically open Log View with the required filters preset.

To launch Search in Logview from an event in the All Events table:
  1. Go to Incidents & Events > Event Monitor > All Events.
  2. Right click on an event.
  3. Select Search in Logview.

    Log View will launch, with the filter automatically filled in with the following information:

    • Log type of the event
    • Time range (the first to the last occurrence of the event)
    • Event trigger and group by value

To launch Search in Logview from an event in the All Incidents table:
  1. Go to Incidents & Events > Event Monitor > All Incidents.
  2. Right click on an event.
  3. Select Search in Logview.

    Log View will launch, with the filter automatically filled in.

Drill-down to Log View from Events

Up to 100 logs related to each event can be stored and viewed in Event Manager. Previously, if more logs are needed over a wider time window, or similar activity on other endpoints needs to be checked, a user must navigate to Log View, determine the correct out filters, then manually enter them to find the logs that they are looking for. This feature adds drill-down capabilities in Event Manager that will automatically open Log View with the required filters preset.

To launch Search in Logview from an event in the All Events table:
  1. Go to Incidents & Events > Event Monitor > All Events.
  2. Right click on an event.
  3. Select Search in Logview.

    Log View will launch, with the filter automatically filled in with the following information:

    • Log type of the event
    • Time range (the first to the last occurrence of the event)
    • Event trigger and group by value

To launch Search in Logview from an event in the All Incidents table:
  1. Go to Incidents & Events > Event Monitor > All Incidents.
  2. Right click on an event.
  3. Select Search in Logview.

    Log View will launch, with the filter automatically filled in.