|
|
|
|
Field Name |
Description |
|---|---|
|
source_username |
The username or identity that initiated the action expressed in the event information. |
|
source_domainname |
The authentication domain of the username or identity expressed in the source_username field. |
|
source_groupname |
The name of the group expressed in the event information. |
|
source_uid |
The identification number of the username or identity expressed in the source_username field. |
|
source_gid |
The identification number of the group expressed in the source_groupname field. |
|
source_hostname |
The name (FQDN or short name) of the host where the action expressed in the event information was initiated from. If Source_hostname is empty, then this value will be set to Source_address in the DM & XMP Files. |
|
source_hostdomainname |
The domain name of the host expressed in the source_hostname field. |
|
source_address |
The IP (or other protocol) address of the host expressed in the source_hostname field. |
|
source_mac_address |
The MAC address of the host expressed in the source_hostname field. |
|
source_port |
The communication port used for initiating the action expressed in the event information. |
|
source_processname |
The name of the process or running executable that initiated the action expressed in the event information. |
|
source_objectname |
The name of the object involved in the action expressed in the event information. |
|
source_objectattr |
The name of the attribute of the object that is expressed in the event information. |
|
source_objectid |
The identification number of the object expressed in the source_objectname field. |
|
source_objectclass |
The class of the object expressed in the source_objectname field. |
|
source_objectvalue |
The value of the object expressed in the source_objectname field. |
| Copyright © 2011 CA. All rights reserved. | Email CA Technologies about this topic |