Versions Compared

Old Version 31

changes.mady.by.user Borja Moro Moreno

Saved on

compared with

New Version 32

changes.mady.by.user Borja Moro Moreno

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Field

Data type

Description

actiondate

timestamp

Date of the action performed.

Id

str

Unique ID automatically assigned to the alert when defined.

name

str

Name assigned to the alert when defined.

action

str

The action carried out (CREATE, EDIT, ENABLE, DISABLE, DELETE…).

username

str

User who performed the action.

Note

admin.alerts@devo.com

This user represents an internal entity responsible for enabling, disabling, or deleting alerts as an automatic or semi-automatic response to specific events. These events typically involve reattempts after failures, errors requiring immediate action to ensure proper functioning, or situations that activate internal defense mechanisms.

info

json

Detailed information about the alert definition settings whenever it’s created or edited (name, description, subcategory, ID, triggering method, priority, etc.).

When the action involves enabling, disabling, or deleting, this field will be empty.

See siem.logtrust.alert.info for the meaning of numerical values in fields such as priority.

...