Netskope : Audit Event
Vendor Documentation
Classification
Rule Name | Rule Type | Classification | Common Event |
---|---|---|---|
Base Rule | Other Audit | General Audit Message |
Mapping with LogRhythm Schema
Device Key in Log Message | LogRhythm Schema | Data Type |
---|---|---|
Device vendor | N/A | N/A |
device product | N/A | N/A |
Device version | N/A | N/A |
Device event class id | <vmid> | Text/String |
Event name | N/A | N/A |
Severity of the event | <severity> | Text/String |
audit log event | <action> <tag1> | Text/String |
type | N/A | N/A |
user | <login> | Text/String |
timestamp | N/A | N/A |