V 2.0 : Client Status Events
Vendor Documentation
Classification
| Rule Name | Rule Type | Common Event | Classification |
|---|---|---|---|
| V 2.0 : Client Status Events | Base Rule | Host Status Messages | Information |
Mapping with LogRhythm Schema
| Device Key in Log Message | LogRhythm Schema | Data Type | Schema Description |
|---|---|---|---|
| N/A | N/A | N/A | Vendor or Manufacturer Name |
| N/A | N/A | N/A | Product Name |
| N/A | N/A | N/A | Product Version |
| N/A | <vmid> | Text/String | EventID |
| ComputerId | N/A | N/A | N/A |
| HostName | <sname> | Text/String | N/A |
| ClientNetworkLocation | <sip> | IP Address | N/A |
| ServerNetworkLocation | <dip> | IP Address | N/A |
| SendState | N/A | N/A | N/A |
| ReceiveState | N/A | N/A | N/A |
| Status | <status> | Text/String | N/A |
| LastRegistration | N/A | N/A | N/A |
| FullVersion | <version> | Text/String | N/A |
| ProtocolVersion | N/A | N/A | N/A |
| ValidKey | N/A | N/A | N/A |
| RegisteredWithTLS | N/A | N/A | N/A |