v6.x Events - Security-Rating | LogRhythm Documentation

Vendor Documentation

https://docs.fortinet.com/document/fortigate/5.6.13/fortios-handbook

Rule Name	Rule Type	Common Event	Classification
v6.x Events - Security-Rating	Base Rule	General Security Warning	Warning
Security-Rating Info	Sub Rule	General Security Information	Information
Security-Rating Notice	Sub Rule	General Security Note	Information
Security-Rating Error	Sub Rule	General Security Error	Error
Security-Rating Critical	Sub Rule	General Security Critical	Critical
Security-Rating Alert	Sub Rule	General Security Alert	Warning

Device Key in Log Message	LogRhythm Schema	Data Type	Schema Description
logid	<vmid>	Number	The ID (logid) is a 10-digit field. It is a unique identifier for that specific log.
N/A	<severity>	Text\String	Each log entry contains a Level (level) field that indicates the estimated severity of the event that caused the log entry.
logdesc	<vendorinfo>	Text\String	N/A
vd	<domainorigin>	Text\String	Name of the virtual domain in which the log message was recorded.
type	<policy>	Text\String	N/A