Enterprise Security demands the sourcetype be "fortinet", but the App has all the macros and everything set to look for "fgt_logs".
Being a bit of a Splunk noob, how do I go about getting the F...
Hi All, my customers security engineer has left the organization and we're curious how we can migrate the dashboards he was using over to other user profiles in Splunk Cloud.
Thank you!
...roduct deployment (ex:Splunk RUM, Splunk Enterprise security,Splunk SOAR, Splunk Threat Research).
Do we see usage report for all product in one dashboard or there is different dashboards for all p...
...gt_utm, etc.
But the fortigate data is not being populated in "Intrusion Centre" dashboard in Enterprise Security.
Should I install "Fortinet Fortigate APP" also in HF and SH to get these dashboards p...
Hi,
In the past if a users develops a scheduled report whose results are used by other users and dashboards we would normally change the ownership to "nobody" so that if the person ever left the r...
After we upgraded to v9.0.1 we get a warning when following dashboard-generated links pointing "outside" splunk:
Redirecting away from Splunk
You are being redirected away from Splunk to...
I just upgraded Splunk ES from 6.2.0 to 7.0.1 on Splunk Core version 8.1.5.
However, some of the dashboards like CloudSecurity, predictive analytics, Executive Summary, SOC Operations are not v...
We have Security Hub data centralized from all our accounts and have now connected Data Manager to that central account so we can get all Security Hub findings into Splunk Cloud. I have noticed t...
...gt_traffic,fgt_event,fgt_utm.
As mentioned in the app when I checked in the ES-Splunk Cloud search head in Enterprise Security App I couldn’t able to find the Fortinet Fortigate data in dashboard as m...