Help
FortiSIEM Discussions
bhinangt
New Contributor II

Created on ‎04-14-2024 07:28 AM

Windows Agent connectivity through Collector only

In Service provider mode when we use Supervisor, Worker and Collector it is expected that windows agent communicate everything through collector.

However FortiSEIM windows agent guide expects that agent will send logs to collector however status update communication would be done with supervisor.

 

Is there any way to completely avoid role of supervisor in communication?

It is not possible to allow supervisor access to all windows end points, because if we have collector in place which is acting as proxy why do windows agent need to communicate to supervisor?

Labels:
131
0 Kudos
1 Solution
FSM_FTNT
Staff
Staff

Created on ‎05-02-2024 02:54 PM

Hi,

 

If you are using the Collector to proxy the comms, then the Agent does not need to contact the Super directly. However, there is no way to completely avoid the supervisor's role, as this is where the Agent obtains policy and configuration information, such as which Collectors to upload events to.

 

https://docs.fortinet.com/document/fortisiem/7.1.5/windows-agent-7-1-x-installation-guide/547950/for...

View solution in original post

59
0 Kudos
1 REPLY 1
FSM_FTNT
Staff
Staff

Created on ‎05-02-2024 02:54 PM

Hi,

 

If you are using the Collector to proxy the comms, then the Agent does not need to contact the Super directly. However, there is no way to completely avoid the supervisor's role, as this is where the Agent obtains policy and configuration information, such as which Collectors to upload events to.

 

https://docs.fortinet.com/document/fortisiem/7.1.5/windows-agent-7-1-x-installation-guide/547950/for...

60
0 Kudos
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.