FortiAnalyzer 7.0

  • Duration 2 days
  • Price $1,750
  • Certifications NSE5
  • Exams NSE5

Save time and money by bundling: This course is part of the NSE 5 Bundle.

View Bundle Details
Course Overviewremove_circle_outline

In this course, you will learn the fundamentals of using FortiAnalyzer for centralized logging and reporting. You will learn how to configure and deploy FortiAnalyzer, and identify threats and attack patterns through logging, analysis, and reporting. Finally, you will examine the management of events, incidents, playbooks, and some helpful troubleshooting techniques.

This course is part of preparation for the NSE 5 certification exam.

Target Audienceadd_circle_outline

This course is intended for networking and security professionals involved in the day-to-day management of a FortiAnalyzer appliance and FortiGate security information.

Course Objectivesadd_circle_outline
  • After completing this course, you should be able to:
  • Describe key features and concepts of FortiAnalyzer
  • Deploy an appropriate architecture
  • Use administrative access controls
  • Monitor administrative events and tasks
  • Configure high availability
  • Understand HA synchronization and load balancing
  • Upgrade the firmware of an HA cluster
  • Verify the normal operation of an HA cluster
  • Manage ADOMs
  • Manage RAID
  • Register supported devices
  • Troubleshoot communication issues
  • Manage disk quota
  • Manage registered devices
  • Protect log information
  • View, search, manage, and troubleshoot logs
  • Monitor and manage events
  • Manage and customize event handlers
  • Create and manage incidents
  • Explore tools used for threat hunting
  • Create, run, and troubleshoot playbooks
  • Import and export playbooks
  • Generate and customize reports
  • Customize charts and datasets
  • Manage and troubleshoot reports
Course Outlineadd_circle_outline
  • 1. Introduction and Initial Configuration
  • 2. Administration and Management
  • 3. Device Registration and Communication
  • 4. Logging
  • 5. FortiSoC—Incidents and Events
  • 6. FortiSoC—Playbooks
  • 7. Reports

The ideal student will have:

  • Familiarity with all topics presented in the FortiGate I and FortiGate II courses.
  • Knowledge of the SQL 'select' syntax is helpful.

Preparation for this course is best achieved through completion of the NSE 4 certification consisting of the FortiGate I and FortiGate II courses.

System Requirements To access online content, students must have a computer with:

  • A high-speed Internet connection
  • An up-to-date web browser
  • A PDF viewer
  • Speakers or headphones
  • (Optionally) a Java runtime environment (JRE)

Have questions? Let us help you.