Skip to main content
Skip table of contents

Catch All : State Changes And MKS Connections

Vendor Documentation

https://www.vmware.com/in/products/esxi-and-esx.html

https://www.vmware.com/topics/glossary/content/bare-metal-hypervisor

Classification

Rule Name

Rule Type

Common Event

Classification
Catch All : State Changes And MKS ConnectionsBase RuleConfiguration Modified : SystemConfiguration
Hostd : VM_STATE_SUSP -> VM_STATE_POWERING_ONSub RuleSystem StartedStartup and Shutdown
Hostd : VM_STATE_POWERING_ON -> VM_STATE_ONSub RuleSystem StartedStartup and Shutdown
Hostd : VM_STATE_OFF -> VM_STATE_POWERING_ONSub RuleSystem StartedStartup and Shutdown
Hostd : VM_STATE_IMMIGRATING -> VM_STATE_ONSub RuleSystem StartedStartup and Shutdown
Hostd : VM_STATE_RECONFIGURING -> VM_STATE_ONSub RuleSystem StartedStartup and Shutdown
Hostd : VM_STATE_POWERING_ON -> VM_STATE_OFFSub RuleSystem ShutdownStartup and Shutdown
Hostd : VM_STATE_EMIGRATING -> VM_STATE_OFFSub RuleSystem ShutdownStartup and Shutdown
Hostd : VM_STATE_ON_SHUTTING_DOWN -> VM_STATE_OFFSub RuleSystem ShutdownStartup and Shutdown
Hostd : VM_STATE_POWERING_OFF -> VM_STATE_OFFSub RuleSystem ShutdownStartup and Shutdown
Hostd : VM_STATE_ON -> VM_STATE_POWERING_OFFSub RuleSystem Shutting DownStartup and Shutdown
Hostd : VM_STATE_ON -> VM_STATE_SHUTTING_DOWNSub RuleSystem Shutting DownStartup and Shutdown
Hostd : VM_STATE_SHUTTING_DOWN -> VM_STATE_ON_SHUTSub RuleSystem Shutting DownStartup and Shutdown
Hostd : Ticket Issued For MKS ConnectionSub RuleMKS Connection Ticket IssuedOther Audit Success
Hostd : VM_STATE_POWERING_ON -> VM_STATE_SUSPSub RuleSystem SuspendedError
Hostd : VM_STATE_ON -> VM_STATE_SUSPENDEDSub RuleSystem SuspendedError
Hostd : VM_STATE_OFF -> VM_STATE_UNREGISTERINGSub RuleSession State ChangedOther Audit
Hostd : VM_STATE_OFF -> VM_STATE_IMMIGRATINGSub RuleSession State ChangedOther Audit
Hostd : VM_STATE_ON -> VM_STATE_EMIGRATINGSub RuleSession State ChangedOther Audit
Hostd : VM_STATE_ON -> VM_STATE_RECONFIGURINGSub RuleSession State ChangedOther Audit
Hostd : VM_STATE_ON -> VM_STATE_TOOLS_UPGRADINGSub RuleUpgrade StartedInformation
Hostd : VM_STATE_DELETING -> VM_STATE_GONESub RuleObject Deleted/RemovedAccess Success
Hostd : VM_STATE_OFF -> VM_STATE_DELETINGSub RuleObject Deleted/RemovedAccess Success

Mapping with LogRhythm Schema

Device Key in Log MessageLogRhythm SchemaData Type
object<object>Text/String
tag1<tag1>Text/String
login<login>Text/String
JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.

Contact Support Close