Pattern 2 : General Messages 2

Classification

Rule Name	Rule Type	Common Event	Classification
Pattern 2 : General Messages 2	Base Rule	General Information	Information
Login While Certificate Was Active	Sub Rule	User Logon	Authentication Success
Device Initialization Completed	Sub Rule	Object Initialized	Access Success
Password Change Initiated By Scheduler	Sub Rule	Password Modified	Account Modified
Password Generation Initiated By Scheduler	Sub Rule	Password Generation Initiated	Other Audit Success
Connection Directory: Update Failed	Sub Rule	Connection Directory Update Failed	Error
Connection Directory: Update Successful	Sub Rule	Configuration Modified : System	Configuration
Password Jumper Removed	Sub Rule	Password Jumper Removed	Other Audit Success
Password Jumper Installed	Sub Rule	Password Jumper Installed	Other Audit Success
Firmware Update Succeeded	Sub Rule	Software Updated	Configuration
Firmare Package Corrupted	Sub Rule	Firmare Package Corrupted	Error
Firmware Update Failed	Sub Rule	Firmware Update Failed	Error

Mapping with LogRhythm Schema  

Device Key in Log Message	LogRhythm Schema	Data Type
N/A	<vmid>	Text\String
N/A	<severity>	Text\String
N/A	<tag1>	Text\String
N/A	<tag2>	Text\String

×