box.macos
- Juan Tomás Alonso Nieto (Deactivated)
- Former user (Deleted)
[ 1 Introduction ] [ 2 Valid tags and data tables ] [ 3 How is the data sent to Devo? ] [ 4 Table structure ]
Introduction
The tags beginning with box.macos identify events generated by macOS.
Valid tags and data tables
These are the valid tags and corresponding data tables that will receive the parsers' data:
Product / Service | Tags | Data tables |
|---|---|---|
macOS |
|
|
|
How is the data sent to Devo?
You can forward logs generated by macOS X using any Syslog drain (for example, Syslog-ng).
Table structure
These are the fields displayed in this table:
box.macos
Field | Type | Source field name | Extra fields |
|---|---|---|---|
eventdate |
| Â | Â |
hostName |
| Â | Â |
facility |
| Â | Â |
level |
| vlevel | Â |
eventGenerationDate |
| Â | Â |
srcHostName |
| Â | Â |
processName |
| Â | Â |
processId |
| Â | Â |
managedProcess |
| Â | Â |
msgId |
| Â | Â |
structuredData |
| Â | Â |
message |
| Â | Â |
rawMessage |
|  | ✓ |
hostchain |
|  | ✓ |
tag |
|  | ✓ |