Syslog - Trend Micro Email Security

Device Details

Device Name	Syslog - Trend Micro Email Security
Vendor	N/A
Device Type	N/A
Supported Model Name/Number	N/A
Supported Software Version	N/A
Collection Method	Syslog
Configurable Log Output	CEF
Log Source Type	Syslog - Trend Micro Email Security
Log Processing Policy	LogRhythm Default V 2.0
Exceptions	N/A
Additional Information	https://docs.trendmicro.com/en-us/enterprise/trend-micro-email-security-online-help/logs-in-hes/managing-syslog/syslog-content-mappi/cef-detection-logs.aspx https://docs.trendmicro.com/en-us/enterprise/trend-micro-email-security-online-help/logs-in-hes/managing-syslog.aspx

Supported Log Messages

(List of LR tags used to parse the log information for each message type)

Type	Product Version	Supported Schema Fields
Catch All : Level 1	N/A	<severity>, <tag1>
Trend Micro Audit Event	N/A	<vmid>, <severity>, <login>, <vendorinfo>, <action>, <domainimpacted>
Trend Micro Detection Event	N/A	<threatid>, <vmid>, <severity>, <domainorigin>, <sender>, <recipient>, <subject>, <size>, <policy>, <action>, <tag1>, <threatname>, <objectname>, <hash>
Trend Micro Mail Tracking Event	N/A	<vmid>, <severity>, <sender>, <recipient>, <subject>, <sip>, <objectname>, <hash>, <size>, <action>, <tag1>
Trend Micro URL Click Tracking Event	N/A	<vmid>, <severity>, <url>, <action>, <tag1>, <subject>, <sender>, <recipient>

Revision History

KB Version	Log Type	Change Type	Details
KB 7.1.XXX.X	Syslog - Trend Micro Email Security	New Device Documentation	N/A