Page Comparison

Table of Contents

minLevel	2
maxLevel	2
type	flat

Introduction

Tags beginning with nac.forescout identify events generated by Forescout.

Valid tags and data tables

...

This is the set displayed by these tables.

...

Rw tab

title	Table 1-2

...

nac.forescout.counteract.policy
Anchor
nac.forescout.counteract.policy
nac.forescout.counteract.policy

Field	Type	Extra Label
eventdate	`timestamp`	-
machine	`str`	-

...

serverdate

...

`str`	-
hostname	`str`	-

...

procName

str

-

...

procId

str

-

...

event_id

...

str

...

-

...

server_instance

...

str

...

-

...

client_ip

sourceIp

ip4

-

...

server_ip

...

ip4

...

-

...

rule

str

-

...

details

str

-

...

match

str

-

...

reason

...

str

...

-

...

session_id

...

str

...

-

...

user_id

...

str

...

-

...

user_identity_source_id

...

str

...

-

...

user_security_domain_id

...

str

...

-

...

user_login_name

...

str

...

-

...

user_first_name

...

str

...

-

...

user_last_name

...

str

...

-

...

arg_1

...

str

...

-

...

arg_2

...

str

...

-

...

arg_3

...

str

...

-

...

arg_4

...

str

...

-

...

arg_5

...

str

...

-

...

arg_6

...

str

...

-

...

cause

...

str

...

-

...

hostchain

...

str

...

✓

...

tag

...

str

...

✓

...

rawMessage

...

str

...

-

...

Field

...

Type

...

Extra Label

...

eventdate

...

timestamp

...

-

...

machine

...

str

...

-

...

server_date

...

timestamp

...

-

...

hostname

...

str

...

-

...

category

...

str

...

-

...

log_level

...

str

...

-

...

event_id

...

str

...

-

...

server_instance

...

str

...

-

...

client_ip

...

ip4

...

-

...

server_ip

...

ip4

...

-

...

action

...

str

...

-

...

action_id

...

str

...

-

...

result

...

str

...

-

...

reason

...

str

...

-

...

session_id

...

str

...

-

...

user_id

...

str

...

-

...

user_identity_source_id

...

str

...

-

...

user_security_domain_id

...

str

...

-

...

user_login_name

...

str

...

-

...

user_first_name

...

str

...

-

...

user_last_name

...

str

...

-

...

agent_id

...

str

...

-

...

agent_security_domain_id

...

str

...

-

...

agent_address

...

ip4

...

-

...

agent_name

...

str

...

-

...

agent_type

...

str

...

-

...

policy_method_id

...

str

...

-

...

policy_method_name

...

str

...

-

...

policy_id

...

str

...

-

...

policy_expression

...

str

...

-

...

arg1

...

str

...

-

...

arg2

...

str

...

-

...

arg3

...

str

...

-

...

arg4

...

str

...

-

...

arg5

...

str

...

-

...

arg6

...

str

...

-

...

arg7

...

str

...

-

...

arg8

...

str

...

-

...

arg9

...

str

...

-

...

arg10

...

str

...

-

...

more_args

...

str

...

-

category	`str`	-
rawMessage	`str`	-
hostchain	`str`	✓
tag	`str`	✓

...

rawMessage

...

str

...

Versions Compared

Old Version 3

New Version 4

Key

Introduction

Valid tags and data tables

nac.forescout.counteract.policy
Anchor
nac.forescout.counteract.policy
nac.forescout.counteract.policy

Page Comparison

Versions Compared

Old Version 3

New Version 4

Key

Introduction

Valid tags and data tables

nac.forescout.counteract.policy Anchornac.forescout.counteract.policynac.forescout.counteract.policy

nac.forescout.counteract.policy
Anchor
nac.forescout.counteract.policy
nac.forescout.counteract.policy