Help
FortiSIEM
FortiSIEM provides Security Information and Event Management (SIEM) and User and Entity Behavior Analytics (UEBA)
Andy_G
Staff
Staff

Created on ‎09-22-2016 01:52 AM Edited on ‎04-08-2022 01:22 PM By Anonymous

Article Id 192750

Technical Note: How to move a rule from one category to another.

Description

This article describes how to move a rule from one category to another.


Scope
To move a rule from one category to another, export the rule and import it back in the wanted category. 
Solution

Here is a step by step guide

1. Log into the FortiSIEM Supervisor GUI.

2. Open the Rule Group  
2.1 On version 4.X go to Analytics >Rules 
2.2 On version 5.X go to Ressources > Rules

3. Highlight the user created Rule to move and click 'Export' button.  
3.1 On version 4.X the export copies the Rule to the clipboard. Paste the definition into a text editor, say WordPad. Verify if the rule is correct & corresponds.
3.2 On version 5.X the export download a XML  file of the rule

4. Delete the Rule in AccelOps.

5. Go to the new Category the rule should be imported in.

6. Import the Rule into this group.

 



 

 

695
0 Kudos
Submit Article Idea
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.