Fortinet black logo

Administration Guide

Home FortiAnalyzer 7.2.2 Administration Guide
7.2.2
7.4.2
7.4.1
7.4.0
7.2.5
7.2.4
7.2.3
7.2.2
7.2.1
7.2.0
7.0.12
7.0.11
7.0.10
7.0.9
7.0.8
7.0.7
7.0.6
7.0.5
7.0.4
7.0.3
7.0.2
7.0.1
7.0.0
6.4.14
6.4.13
6.4.12
6.4.11
6.4.10
6.4.9
6.4.8
6.4.7
6.4.6
6.4.5
6.4.4
6.4.3
6.4.2
6.4.1
6.4.0
6.2.12
6.2.11
6.2.10
6.2.9
6.2.8
6.2.7
6.2.6
6.2.5
6.2.3
6.2.2
6.2.1
6.2.0
6.0.12
6.0.11
6.0.10
6.0.9
6.0.8
6.0.7
6.0.6
6.0.5
6.0.4
6.0.3
6.0.2
6.0.1
6.0.0
5.6.11
5.6.10
5.6.10
5.6.9
5.6.8
5.6.7
5.6.6
5.6.5
5.6.4
5.6.3
5.6.2
5.6.1
5.6.0
5.4.7
5.4.6
5.4.5
5.4.4
5.4.3
5.4.2
5.4.1
5.4.0
5.2.10
5.2.9
5.2.7
5.2.6
5.2.5
5.2.4
5.2.3
5.2.2
5.2.1
5.2.0
5.0.13
5.0.11
5.0.10
5.0.9
5.0.8
5.0.7
5.0.6
5.0.5
5.0.4
5.0.3
5.0.2
4.3.0
4.2.0
4.1.0
4.0.0

Creating notification profiles

Creating notification profiles

Notification profiles are used to send alert notifications when an event is generated by an event handler. You can configure the notification profile to send the alert to an email address, SNMP community, and/or syslog server. You can also configure the notification profile to send the alert through a fabric connector.

You can create, edit, clone, and delete notification profiles in FortiSoC/Incidents & Events > Handlers > Notification Profile List.

To assign a notification profile to a basic event handler, see Creating a custom event handler.

To assign a notification profile to a correlation handler, see Creating a custom correlation handler.

To create a notification profile:
  1. Go to FortiSoC/Incidents & Events > Handlers > Notification Profile List.
  2. Click Create New.

    The Add New Notification Profile pane displays.

  3. Configure the following options, and click OK to save the notification profile.

    Option

    Description

    Name

    Enter a name for the notification profile.

    Send Alert through Fabric Connectors

    Send an alert through one or more fabric connectors selected from the dropdown. Click the plus (+) to add fabric connectors. For more information, see Fabric Connectors.

    Send Alert Email

    Send an alert to one or more email addresses. Specify the email parameters, including the mail server. For more information, see Mail Server.

    To

    Enter the email address(es) to send the alert to. Use a semicolon (;) to separate multiple email addresses.

    From

    Enter a from address for the alert email.

    Subject

    Enter a subject line for the alert email.

    Email Server

    Select the mail server for the alert email.

    Send SNMP(...) Trap

    Send an alert to an SNMP community or user selected from the dropdown. For more information, see SNMP.

    Send Alert to Syslog Server

    Send an alert to the syslog server selected from the dropdown. For more information, see Syslog Server.

    Send Each Alert Separately

    Enable to send each alert individually instead of in a group.

Previous
Next

Creating notification profiles

Notification profiles are used to send alert notifications when an event is generated by an event handler. You can configure the notification profile to send the alert to an email address, SNMP community, and/or syslog server. You can also configure the notification profile to send the alert through a fabric connector.

You can create, edit, clone, and delete notification profiles in FortiSoC/Incidents & Events > Handlers > Notification Profile List.

To assign a notification profile to a basic event handler, see Creating a custom event handler.

To assign a notification profile to a correlation handler, see Creating a custom correlation handler.

To create a notification profile:
  1. Go to FortiSoC/Incidents & Events > Handlers > Notification Profile List.
  2. Click Create New.

    The Add New Notification Profile pane displays.

  3. Configure the following options, and click OK to save the notification profile.

    Option

    Description

    Name

    Enter a name for the notification profile.

    Send Alert through Fabric Connectors

    Send an alert through one or more fabric connectors selected from the dropdown. Click the plus (+) to add fabric connectors. For more information, see Fabric Connectors.

    Send Alert Email

    Send an alert to one or more email addresses. Specify the email parameters, including the mail server. For more information, see Mail Server.

    To

    Enter the email address(es) to send the alert to. Use a semicolon (;) to separate multiple email addresses.

    From

    Enter a from address for the alert email.

    Subject

    Enter a subject line for the alert email.

    Email Server

    Select the mail server for the alert email.

    Send SNMP(...) Trap

    Send an alert to an SNMP community or user selected from the dropdown. For more information, see SNMP.

    Send Alert to Syslog Server

    Send an alert to the syslog server selected from the dropdown. For more information, see Syslog Server.

    Send Each Alert Separately

    Enable to send each alert individually instead of in a group.

Previous
Next