An event that occurred
xdm.event.id
Description |
The event ID within the original source. |
Datatype |
String |
Dataclass |
Scalar |
xdm.event.type
Description |
The event type. |
Datatype |
String |
Dataclass |
Scalar |
Examples |
NETWORK, PROCESS, AUDIT, HOST |
xdm.event.original_event_type
Description |
The original event type. |
Datatype |
String |
Dataclass |
Scalar |
xdm.event.operation
Description |
The operation type. |
Datatype |
|
Dataclass |
Scalar |
Examples |
XDM_CONST.OPERATION_TYPE_DIR_CREATE, XDM_CONST.OPERATION_TYPE_FILE_WRITE, XDM_CONST.OPERATION_TYPE_IMAGE_LOAD, XDM_CONST.OPERATION_TYPE_PROCESS_TERMINATE, XDM_CONST.OPERATION_TYPE_PROCESS_CREATE |
xdm.event.operation_sub_type
Description |
The operation sub-type. |
Datatype |
String |
Dataclass |
Scalar |
Examples |
INJECTION, TUNNEL, NTLM |
xdm.event.description
Description |
The event's message or description. |
Datatype |
String |
Dataclass |
Scalar |
xdm.event.tags
Description |
List of tags that are related to the activity. |
Datatype |
|
Dataclass |
Array |
Examples |
XDM_CONST.EVENT_TAG_AUTHENTICATION, XDM_CONST.EVENT_TAG_NETWORK, XDM_CONST.EVENT_TAG_CLOUD, XDM_CONST.EVENT_TAG_SAAS, XDM_CONST.EVENT_TAG_ONPREM |
xdm.event.outcome
Description |
The result of this activity. |
Datatype |
|
Dataclass |
Scalar |
Examples |
XDM_CONST.OUTCOME_SUCCESS, XDM_CONST.OUTCOME_FAILED, XDM_CONST.OUTCOME_PARTIAL, XDM_CONST.OUTCOME_UNKNOWN |
xdm.event.outcome_reason
Description |
The reason for the outcome. |
Datatype |
String |
Dataclass |
Scalar |
xdm.event.duration
Description |
The amount of time, in milliseconds, for the completion of the action. |
Datatype |
Number |
Dataclass |
Scalar |
xdm.event.is_completed
Description |
Whether the action was completed or is ongoing. |
Datatype |
Boolean |
Dataclass |
Scalar |
xdm.event.log_level
Description |
The importance level of the event. |
Datatype |
|
Dataclass |
Scalar |
Examples |
XDM_CONST.LOG_LEVEL_CRITICAL, XDM_CONST.LOG_LEVEL_ERROR, XDM_CONST.LOG_LEVEL_WARNING, XDM_CONST.LOG_LEVEL_DEBUG |