...
These are the fields displayed in this table:
Field | Type | Field transformation | Source field name | Extra fields | ||
---|---|---|---|---|---|---|
eventdate |
|
|
| |||
hostname |
|
|
| |||
ACCID |
|
|
| |||
REGION |
|
|
| |||
metadata__product__version |
|
|
| |||
metadata__product__name |
|
|
| |||
metadata__product__feature__name |
|
|
| |||
metadata__product__vendor_name |
|
|
| |||
metadata__profiles |
|
|
| |||
metadata__version |
|
|
| |||
time |
|
|
| |||
cloud__region |
|
|
| |||
cloud__provider |
|
|
| |||
api__response__error |
|
|
| |||
api__response__message |
|
|
| |||
api__operation |
|
|
| |||
api__request__uid |
|
|
| |||
api__version |
|
|
| |||
api__service__name |
|
|
| |||
ref_event_uid |
|
|
| |||
src_endpoint__uid |
|
|
| |||
src_endpoint__ip4 |
|
| src_endpoint__ip | |||
src_endpoint__ip6 |
|
| src_endpoint__ip | |||
src_endpoint__domain |
|
|
| |||
resources |
|
|
| |||
identity__user__type |
|
|
| |||
identity__user__name |
|
|
| |||
identity__user__uid |
|
|
| |||
identity__user__uuid |
|
|
| |||
identity__user__account_uid |
|
|
| |||
identity__user__credential_uid |
|
|
| |||
identity__session__created_time |
|
|
| |||
identity__session__mfa |
|
|
| |||
identity__session__issuer |
|
|
| |||
identity__invoked_by |
|
|
| |||
identity__idp__name |
|
|
| |||
http_request__user_agent |
|
|
| |||
class_name |
|
|
| |||
class_uid |
|
|
| |||
category_name |
|
|
| |||
category_uid |
|
|
| |||
severity_id |
|
|
| |||
severity |
|
|
| |||
activity_name |
|
|
| |||
activity_id |
|
|
| |||
type_uid |
|
|
| |||
type_name |
|
|
| |||
unmapped |
|
|
| |||
at_devo_pulling_id |
|
|
| |||
hostchain |
|
|
| ✓ | ||
tag |
|
|
| ✓ | ||
rawMessage |
|
|
| ✓ |