Skip to main content
Skip table of contents

VMware UAG : Audit Events

Vendor Documentation

https://docs.vmware.com/en/Unified-Access-Gateway/index.html

Classification

Rule NameRule TypeCommon EventClassification
VMware UAG : Audit EventsBase RuleGeneral Audit MessageOther Audit
VMware UAG : Admin LogonSub RuleUser LogonAuthentication Success
VMware UAG : Config ChangeSub RuleObject ModifiedAccess Success
VMware UAG : Admin LogoutSub RuleUser LogoffAuthentication Success

Mapping with LogRhythm Schema

Device Key in Log MessageLogRhythm SchemaData Type
log level<severity>Text/String
log message

<action>

<tag1>

Text/String
SOURCE_IP_ADDR<sip>IP Address
USERNAME<login>Text/String
CHANGE<vendorinfo>Text/String
JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.

Contact Support Close