Support

Support for business applications

Kaspersky CyberTrace

Installation and integration guides

Part 2: Integrating Kaspersky CyberTrace with an event source

Integration with FortiSIEM

Receiving events from Kaspersky CyberTrace in FortiSIEM
Kaspersky CyberTrace
Нет результатов
Online Help
FAQ System requirements Download Contact support Recovery tools Product videos

Receiving events from Kaspersky CyberTrace in FortiSIEM

April 11, 2024

ID 181635

This section describes how to configure Kaspersky CyberTrace and FortiSIEM so that FortiSIEM will receive events from Kaspersky CyberTrace.

To receive events from Kaspersky CyberTrace in FortiSIEM:

  1. Add Kaspersky CyberTrace to FortiSIEM as an event source.
  2. In FortiSIEM, add the Device IP Address field and the Detected indicator field.
  3. In FortiSIEM, add rules for parsing events from Kaspersky CyberTrace.
  4. Optionally, in FortiSIEM add descriptions of events from Kaspersky CyberTrace.

Did you find this article helpful?
What can we do better?
Thank you for your feedback! You're helping us improve.
Thank you for your feedback! You're helping us improve.