Vendor Documentation


Classification

Rule Name

Rule Type

Common Event

Classification


CB-Job-Runner Log MessagesBase RuleActions That Affect JobsInformation


Sample Logs

08 02 2017 21:40:15 1.1.1.1 <USER:INFO> Aug  2 21:40:09 EQSVCABLPD02 cb-job-runner[17242]: [watchlist_search] Processing watchlist entry dcbc81ef-d73e-4673-9ff8-3ef217b98171 (43)

Mapping with LogRhythm Schema

Device Key in Log MessageLog ValueLogRhythm SchemaData Type
severityINFO<severity>Text/String
N/Acb-job-runner<process>Text/String
N/A17242<processid>Number
N/Awatchlist_search<object>Text/String
N/AProcessing watchlist entry dcbc81ef-d73e-4673-9ff8-3ef217b98171 (43)<subject>Text/String