Previous Topic: SIM--Segregation of Duty Violation ActionNext Topic: User Admin Right Assignment Action


Suspicious User Permission Detected Action

The Suspicious User Permission Detected action contains information on the discovery of resource permissions for suspected or suspicious users.

Information

Level

Source - User Information

Tertiary

Source - Host Information

Tertiary

Source - Object Information

Tertiary

Source - Process Information

Tertiary

Source - Group Information

Tertiary

Dest - User Information

Tertiary

Dest - Host Information

Primary

Dest - Object Information

Primary

Dest - Group Information

Tertiary

Agent - Information

Primary

Agent - Host Information

Primary

Event Source - Host Information

Primary

Event Source - Information

Tertiary

Event - Information

Primary

Result - Information

Primary

Result

event_result

event_severity

Success

S

3