LDAP Monitor Messages
Classification
Rule Name | Rule Type | Common Event | Classification |
|---|---|---|---|
| LDAP Monitor Messages | Base Rule | LDAP Request Failed | Activity |
| Server Is Unavailable | Sub Rule | Authentication Server Unavailable | Warning |
| Terminating Connection | Sub Rule | Connection Terminated | Network Traffic |
| New Connection | Sub Rule | Connection Information | Information |
| Error Reading | Sub Rule | Read Failure | Error |
| Error: Write Operation | Sub Rule | Write Operation Failed | Error |
| Process Started | Sub Rule | Process/Service Started | Startup and Shutdown |
| Disk Usage Message | Sub Rule | General DiskQuota Information | Information |
| Error: OS Read | Sub Rule | Read Failure | Error |
| Failed: File Or Directory Not Found | Sub Rule | No Such File Or Directory | Error |
Mapping with LogRhythm Schema
| Device Key in Log Message | LogRhythm Schema | Data Type |
| N/A | <vmid> | Number |
| N/A | <severity> | Text\String |
| N/A | <sip> | IP Address |
| N/A | <sname> | Text\String |
| N/A | <sport> | Number |
| N/A | <session> | Text\String |
| N/A | <process> | Text\String |
| N/A | <processid> | Number |
| N/A | <object> | Text\String |
| N/A | <objectname> | Text\String |
| N/A | <command> | Text\String |
| N/A | <tag1> | Text\String |