- Version: 4.0.0
- Certified: Yes
- Publisher: Fortinet
- Compatible Version: 7.6.0 and later
- Release Notes
Note
This is a preview version of FortiAI designed to demonstrate the potential of Generative AI in FortiSOAR. Preview releases are a beta release. This means that release is intended to get feedback and might not be best suited for production level deployments. Feature availability and support for preview releases will continue to improve as the solution/feature matures.
Important
After an upgrade, you must run the configuration wizard again.
FortiAI is a cutting-edge context-aware GenAI security assistant that transforms how security professionals operate and respond to threat alerts. Designed to simplify complex analysis and remediation tasks, FortiAI allows users to interact with FortiSOAR through natural language commands for data analysis, threat identification, and resolution. Whether you're building connectors, generating playbooks, escalating alerts, or crafting Jinja expressions, FortiAI accelerates your response cycles and enhances accuracy.
With FortiAI, every action is simplified, every task is streamlined, and your security operations are more efficient than ever before.
FortiAI doesn’t just stop at connectors and playbooks—it’s packed with a variety of SOC Assistant capabilities designed to enhance your entire workflow:
- Advanced Filtering: Refine searches for alerts, incidents, or indicators using customizable filters. With options like severity, status, and other criteria, users can quickly retrieve the exact data they need—saving time and improving decision-making.
- Voice Support: Experience hands-free interaction with FortiAI’s voice-to-natural language functionality. Issue voice commands for tasks like filtering records, generating playbooks, or blocking indicators. Ideal for multitasking, this feature speeds up workflows and improves accessibility.
- Alert Escalation: Automatically escalate critical alerts to incidents, ensuring your team is always on top of the most pressing threats.
- War Room Setup: Quickly set up virtual war rooms to collaborate with your team on incident resolution, ensuring coordinated and efficient responses.
- Jinja Expression Crafting: Design and implement Jinja expressions effortlessly, giving you full control over your playbooks and automations.
These capabilities make FortiAI not just a tool, but a comprehensive solution for every aspect of your security operations, from detection to response.
FortiAI is revolutionizing playbook design by offering a truly context-aware automation engine. Whether you're designing standard workflows or complex incident response protocols, FortiAI now delivers:
- Intelligent Playbook Blocks: Automatically generate playbook steps with precise context, reducing manual effort.
- Jinja Expression Selection: FortiAI intelligently picks the best Jinja expressions for each step, making playbooks more efficient.
- Dynamic Adjustments: FortiAI detects which steps need loops for record traversal and tailors playbook steps accordingly.
With these features, FortiAI accelerates playbook creation, ensuring that every action is efficient, accurate, and contextually appropriate for the specific task at hand.
FortiAI introduces a game-changing Connector Generation feature, allowing users to create custom connectors through natural language commands. Whether you need to integrate new tools, systems, or APIs, FortiAI takes care of the heavy lifting:
-
Auto-Generated Connector Code: With a few simple inputs, you get fully functional connectors ready to integrate into your workflows.
-
File Upload Support: Upload Postman collections, Swagger files, or even documents (.json, .yml, .txt, .pdf) to assist in the connector creation process.
This functionality allows security teams to build connectors faster, enhance integration capabilities, and ensure that all tools work in harmony within FortiSOAR—cutting down on manual coding and reducing integration times.
FortiAI is not just a tool—it’s the future of security automation. From effortless connector creation to intelligent playbook design, and even enhanced SOC capabilities, FortiAI is your ultimate assistant in streamlining operations, reducing response times, and staying ahead of threats.
Ready to elevate your security game? FortiAI is here to help.
The FortiAI lets you connect your Fortinet account to your own OpenAI account, using your own OpenAI Assistant API key. This integration will send data from your Fortinet account to OpenAI and will show you responses from OpenAI. Fortinet does not verify or correct these responses and has no responsibility for them. OpenAI Assistant is operated by a third party, not Fortinet. You must exercise discretion and independently verify any information or recommendations you receive from OpenAI before relying on them.
Before using the FortiAI, we recommend that you review OpenAI’s API Platform privacy policy to understand how your data may be used and protected. By continuing to use FortiAI, you acknowledge and agree to the terms outlined in OpenAI’s privacy policy.
For any further questions or concerns about your privacy, refer to OpenAI’s privacy policy.
- Advanced Usage
- Troubleshooting
- Prompts for filtering alert records
- Prompts for filtering incident records
- Prompts for filtering indicator records
- Example: Building a connector
- Example: Generating a playbook
| Installation | Configuration | Usage | Contents |
|---|