• Duration 1 days
  • Price $875
  • Certifications NSE5
  • Exams NSE5

Save time and money by bundling: This course is part of the NSE 5 Bundle.

View Bundle Details
Course Overviewremove_circle_outline

In this 1-day class, you will learn how to use FortiAnalyzer. You will explore setup, registering supported devices and securing communications, managing logs and archives, and configuring both predefined and customized reports.

This course provides a solid understanding of how to integrate FortiAnalyzer into your network awareness infrastructure.

This course is part of preparation for the NSE 5 certification exam.

Target Audienceadd_circle_outline

This course is intended for networking and security professionals involved in the day-to-day management of a FortiAnalyzer appliance and FortiGate security information.

Course Objectivesadd_circle_outline

After completing this course, you will be able to:

  • Describe key features and concepts of FortiAnalyzer
  • Deploy an appropriate architecture
  • Manage ADOMs on both FortiAnalyzer and the devices that log to it
  • Configure RAID
  • Register supported devices
  • Encrypt log transmission (SSL / IPSec)
  • View & analyze current and historical logs (FortiView)
  • Monitor events
  • Apply disk quotas to log data from devices
  • Backup, restore, and forward log data
  • Use content archiving (summary and full)
  • Understand the different stages of data processing, from receiving logs to compiling reports
  • Understand SQL queries and datasets used by FortiAnalyzer reports
  • Design datasets, charts, and custom reports
  • Generate reports by schedule or on demand
Course Outlineadd_circle_outline

Lesson 1: Introduction to FortiAnalyzer

  • Key features
  • Key concepts
  • Different FortiAnalyzer models

Lesson 2: Configuration & Administration

  • Deployment requirements
  • Configuration tools
  • Configuring network settings
  • Backing up system configuration
  • Configuring administrative users
  • Configuring, enabling, and assigning ADOMs
  • Configuring RAID

Lesson 3: Device Registration

  • Registered and unregistered devices
  • Device registration methods
  • Modifying options of a registered device
  • Methods available to secure communication
  • Configuring SSL encryption and encryption levels
  • Configuring an IPsec tunnel

Lesson 4: Logs & Archives

  • Logging basics
  • The FortiView tab
  • Configuring log arrays an*d event handlers

Lesson 5: Reports

  • Reports and functionality
  • Relationship between reports, charts, and datasets
  • Effect of ADOMs on report settings
  • SQL SELECT queries and clauses
  • SQL functions and operators
  • FortiAnalyzer-specific functions and macros
  • Building or customizing charts
  • Report features--creating, cloning, configuring

The ideal student will have:

  • Familiarity with all topics presented in the FortiGate I and FortiGate II courses.
  • Knowledge of the SQL 'select' syntax is helpful.

Preparation for this course is best achieved through completion of the NSE 4 certification consisting of the FortiGate I and FortiGate II courses.

System Requirements To access online content, students must have a computer with:

  • A high-speed Internet connection
  • An up-to-date web browser
  • A PDF viewer
  • Speakers or headphones
  • (Optionally) a Java runtime environment (JRE)

Have questions? Let us help you.