Support

Support for business applications

Kaspersky CyberTrace

Installation and integration guides

Part 2: Integrating Kaspersky CyberTrace with an event source

Integration with FortiSIEM

Receiving events from Kaspersky CyberTrace in FortiSIEM

Adding descriptions of events in FortiSIEM
Kaspersky CyberTrace
Нет результатов
Online Help
FAQ System requirements Download Contact support Recovery tools Product videos

Adding descriptions of events in FortiSIEM

April 11, 2024

ID 181686

This section explains how to add descriptions to detection events and service events that are sent by Kaspersky CyberTrace.

To add descriptions to events from Kaspersky CyberTrace:

  1. Open the FortiSIEM web console.
  2. Select Admin > Device Support > Event > New.

    The Event Definition window opens.

  3. Specify the following data:
    • In the Name field, specify PH_DEV_MON_CUST_СYBERTRACE_DETECTION_EVENT.
    • In the Device Type field, select Kaspersky CyberTrace.
    • In the Event Type Group field, select Security.
    • In the Severity field, select 8-MEDIUM.
    • In the Description field, specify Detection events from Kaspersky CyberTrace.
  4. Click Save.
  5. Select Admin > Device Support > Event > New.
  6. In the Event Definition window that opens, specify the following data:
    • In the Name field, specify PH_DEV_MON_CUST_CYBERTRACE_SERVICE_EVENT.
    • In the Device Type field, select Kaspersky CyberTrace.
    • In the Event Type Group field, select Info.
    • In the Severity field, select 4-LOW.
    • In the Description field, specify Service events from Kaspersky CyberTrace.
  7. Click Save.
  8. In the Admin > Device Support > Event section, click Apply, and in the message box that opens click Yes to agree to the changes.

Did you find this article helpful?
What can we do better?
Thank you for your feedback! You're helping us improve.
Thank you for your feedback! You're helping us improve.