Classification
|
Rule Name |
Rule Type |
Classification |
Common Event |
|---|---|---|---|
|
Loaded IKE Secret |
Sub Rule |
Information |
Using Default Shared Secret |
|
Loading Secrets |
Sub Rule |
Information |
Using Default Shared Secret |
|
Rereading Secrets |
Sub Rule |
Information |
Using Default Shared Secret |
|
Forgetting Secrets |
Sub Rule |
Information |
Using Default Shared Secret |
|
Loaded PSK Secret |
Sub Rule |
Information |
Using Default Shared Secret |
|
Secrets/Key Information |
Base Rule |
Information |
General Process Information |
|
Could Not Load Host Key |
Sub Rule |
Error |
getHostSshKey Failed |
|
Permission Misconfiguration |
Sub Rule |
Warning |
Log Permission Misconfiguration |
|
Loaded RSA Private Key |
Sub Rule |
Information |
Key Exchange Information |
|
Loaded Private Key |
Sub Rule |
Information |
Key Exchange Information |
|
Loaded Private Key |
Sub Rule |
Information |
Key Exchange Information |
Mapping with LogRhythm Schema
|
Device Key in Log Message |
LogRhythm Schema |
Data Type |
|---|---|---|
|
SAU1 |
<severity> |
Text/String |
|
May 18 00:07:02 |
<parentprocessname> |
Text/String |
|
N/A |
<processid> |
Number |
|
N/A |
<dname> |
Text/String |
|
N/A |
<subject> |
Text/String |
|
N/A |
<process> |
Text/String |
|
N/A |
<tag1> |
Text/String |
|
N/A |
<dip> |
Number |
|
N/A |
<sip> |
Number |
|
N/A |
<object> |
Text/String |