Vendor Documentation
Classification
|
Rule Name |
Rule Type |
Common Event |
Classification |
|---|---|---|---|
|
V 2.0 : Catch All : SEPM System Events |
Base Rule |
General System Information |
Information |
|
V 2.0 : SEPM General Error Message |
Sub Rule |
General System Error |
Error |
|
V 2.0 : SEPM General Warning Message |
Sub Rule |
General System Warning |
Warning |
|
V 2.0 : SEPM General Information Message |
Sub Rule |
General System Information |
Information |
|
V 2.0 : SEPM General Critical Message |
Sub Rule |
General System Critical |
Critical |
Mapping with LogRhythm Schema
|
Device Key in Log Message |
LogRhythm Schema |
Data Type |
|---|---|---|
|
Time Stamp |
N/A |
N/A |
|
Severity |
<severity> <tag1> |
Text/String |
|
Site Name |
N/A |
N/A |
|
Server Name |
<dname> |
Text/String |
|
Event Description |
<subject>
|
Text/String |