Classification

Rule Name

Rule Type

Common Event

Classification

Catch All : Level 2Base RuleGeneral InformationInformation
General Informational MessageSub RuleGeneral InformationInformation
General Error MessageSub RuleGeneral ErrorError
General Critical MessageSub RuleGeneral CriticalCritical
General Warning MessageSub RuleGeneral WarningWarning

Mapping with LogRhythm Schema  

Device Key in Log Message

Log Value

LogRhythm Schema

Data Type

N/AN/A<vendorinfo>Text/String
N/AN/A<vmid>Number
N/AN/A<severity>Text/String
N/AN/A<login>Text/String
N/AN/A<domainorigin>Text/String
N/AN/A<dname>Text/String
N/AN/A<session>Number/Text/String
N/AN/A<process>Text/String
N/AN/A<processid>Number