Fortinet black logo

Release Notes

Home FortiNDR 7.1.0 Release Notes
7.1.0
7.4.3
7.4.2
7.4.1
7.4.0
7.2.3
7.2.2
7.2.1
7.2.0
7.1.1
7.1.0
7.0.6
7.0.5
7.0.4
7.0.3
7.0.2
7.0.1
7.0.0

System integration and support

System integration and support

The following integration is tested and supported in FortiNDR 7.1.0.

  • While FOS 6.2 and 5.6 file submission with OFTP, via the FortiSandbox field, is tested and compatible, official support for submitting files is in FOS 6.4.0 and higher.

  • HTTP2 file submission from FortiGate 7.2.0

  • FortiGate inline blocking (with AV profile) is supported in FOS 7.0.1 and higher.
  • FortiAnalyzer integration is supported in FortiAnalyzer 7.0.1 and higher.
  • FortiSIEM integration is supported in FortiSIEM 6.3.0 and higher.
  • FortiSandbox integration (API submission from FortiSandbox to FortiNDR) is supported from FortiSandbox 4.0.1 and higher.
  • FortiGate quarantine via webhook 6.4.0 and higher.
  • FortiMail 7.2.0
  • ICAP is supported for:
    • FortiGate 6.4.0 and higher.
    • FortiWeb 6.3.11 and higher.
    • Squid and other compatible ICAP clients.
    • FortiProxy 7.0.0.
    • FortiNAC quarantine support (v9.2.2+)
    • FortiSwitch quarantine via FortiLink (FortiSwitch v7.0.0+ and FortiGate v7.0.5+)
    Note

    FortiNDR 7.0.1 and later supports sending both malware and NDR logs to FortiAnalyzer and FortiSIEM or other syslog devices.

    FortiAnalyzer 7.2.0 supports receiving logs from FortiNDR (log view only).

    FortiAnalyzer 7.2.1 supports reporting based on logs.

  • FortiAuthenticator v6.4.5 and higher is supported for 2FA token login with the GUI. Push tokens are not supported at this time.

Previous
Next

System integration and support

The following integration is tested and supported in FortiNDR 7.1.0.

  • While FOS 6.2 and 5.6 file submission with OFTP, via the FortiSandbox field, is tested and compatible, official support for submitting files is in FOS 6.4.0 and higher.

  • HTTP2 file submission from FortiGate 7.2.0

  • FortiGate inline blocking (with AV profile) is supported in FOS 7.0.1 and higher.
  • FortiAnalyzer integration is supported in FortiAnalyzer 7.0.1 and higher.
  • FortiSIEM integration is supported in FortiSIEM 6.3.0 and higher.
  • FortiSandbox integration (API submission from FortiSandbox to FortiNDR) is supported from FortiSandbox 4.0.1 and higher.
  • FortiGate quarantine via webhook 6.4.0 and higher.
  • FortiMail 7.2.0
  • ICAP is supported for:
    • FortiGate 6.4.0 and higher.
    • FortiWeb 6.3.11 and higher.
    • Squid and other compatible ICAP clients.
    • FortiProxy 7.0.0.
    • FortiNAC quarantine support (v9.2.2+)
    • FortiSwitch quarantine via FortiLink (FortiSwitch v7.0.0+ and FortiGate v7.0.5+)
    Note

    FortiNDR 7.0.1 and later supports sending both malware and NDR logs to FortiAnalyzer and FortiSIEM or other syslog devices.

    FortiAnalyzer 7.2.0 supports receiving logs from FortiNDR (log view only).

    FortiAnalyzer 7.2.1 supports reporting based on logs.

  • FortiAuthenticator v6.4.5 and higher is supported for 2FA token login with the GUI. Push tokens are not supported at this time.

Previous
Next