Support

Support for business applications

Kaspersky CyberTrace

Installation and integration guides

Part 2: Integrating Kaspersky CyberTrace with an event source

Integration with FortiSIEM

Receiving events from Kaspersky CyberTrace in FortiSIEM

Adding Kaspersky CyberTrace as an event source in FortiSIEM
Kaspersky CyberTrace
Нет результатов
Online Help
FAQ System requirements Download Contact support Recovery tools Product videos

Adding Kaspersky CyberTrace as an event source in FortiSIEM

April 11, 2024

ID 181681

This section describes how to add Kaspersky CyberTrace as an event source in FortiSIEM.

To add Kaspersky CyberTrace as an event source:

  1. Open the FortiSIEM web console.
  2. Select Admin > Device Support > Device/App.
  3. Click New.

    The Device/Application Type Definition window opens.

  4. Specify the following information:
    • In the Category field, select Application.
    • In the Vendor field, specify Kaspersky.
    • In the Model field, specify CyberTrace.
    • In the Version field, specify ANY.
    • In the Device/App Group field, select Applications > Infrastructure App item.
    • Do not change the Biz Service Group field.
    • Clear any selected items from the drop-down list of the Access Protocol field.

    Edit Device/Application Type Definition window in FortiSIEM.

    Editing a device/application type definition

  5. Click Save.

    A new item appears in the list of supported devices and applications.

  6. Click Apply.

For more information about supporting devices and applications, visit http://help.fortinet.com/fsiem/5-1-1/Online-Help/HTML5_Help/Working_with_Devices_and_Applications.htm.

Did you find this article helpful?
What can we do better?
Thank you for your feedback! You're helping us improve.
Thank you for your feedback! You're helping us improve.