Skip to main content
Skip table of contents

V 2.0 : Endpoint Management Event

Vendor Documentation


Rule NameRule TypeCommon EventClassification
V 2.0 : Endpoint Management EventBase RuleGeneral InformationInformation

Mapping with LogRhythm Schema

Device Key in Log MessageLogRhythm SchemaData TypeSchema Description
product<vmid>Text/StringProduct name
Originip<dip>IP AddressIP of the log origin 
originN/AN/AName of the first Security Gateway that reported this event
operation<action>Text/StringThe type of operation done on the object or rule
subject<vendorinfo>Text/StringAudit log category
administrator<login>Text/StringUser who performed the operation
performedon<object>Text/StringThe name of the object that is affected by the action
objecttype<objecttype>Text/StringThe type of the affected object
timeN/AN/AThe time stamp when the log was created
ifdirectionN/AN/AConnection direction
ifnameN/AN/AThe name of the Security Gateway interface through which a connection traverses
flagsN/AN/ACheckpoint internal field
loguidN/AN/AUUID  of unified logs 
originsicnameN/AN/AMachine SIC  
sequencenumN/AN/ANumber added to order logs with the same Linux timestamp and origin
JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.