Classification
|
Rule Name |
Rule Type |
Classification |
Common Event |
|---|---|---|---|
|
Authentication Failed |
Base Rule |
Authentication Failure |
Authentication Failure Activity |
Mapping of Authentication Failed with LR Schema
|
Device Key in log message |
Log Value |
LogRhythm Schema |
Data Type |
|---|---|---|---|
|
|
|
<severity> |
Text/String |
|
|
|
<dname> |
Text/String |
|
|
|
<process> |
Text/String |
|
|
|
<processid> |
Numeric |
|
user |
|
<login> |
Text/String |