C Event Fields - Novell SENTINEL LOG MANAGER 1.0.0.5 - ADMINISTRATION GUIDE 03-31-2010 Administration Manual

Hide thumbs Also See for SENTINEL LOG MANAGER 1.0.0.5 - ADMINISTRATION GUIDE 03-31-2010:

Installation manual (38 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

page of 168

/ 168
Contents
Table of Contents
Bookmarks

Table of Contents

Event Fields

Each event has its own fields. Based on the type of event, some fields in an event might not be

populated. The values for these event fields can be viewed by using a search or running a report.

Each field has a short name that is used in advanced searches. The values for most of these fields are

visible in the detailed event view; other values are visible in the basic event view.

NOTE: The taxonomy values that you can search for the TaxonomyLevel* and XDAS* fields are

documented at the

Sentinel Taxonomy Web page (http://developer.novell.com/wiki/index.php/

Sentinel_Taxonomy).

Some fields are tokenized. Tokenizing also makes it possible to search for an individual word in the

field without a wildcard. The fields are tokenized based on spaces and other special characters. For

these fields, articles such as "a" or "the" is removed from the search index.

Tokenized fields are marked in the following table and these fields are not case-sensitive while

performing a search.

NOTE: In addition to the below mentioned tokenized field, if you do a search without specifying a

field name (full text search), that search will be performed tokenized (not case-sensitive).

Event Fields

Table C-1

Field

Short Name

Collector

port

CollectorId

rv22

CollectorManagerId

rv21

CollectorScript

agent

ConnectorId

rv23

ControlMonitor

rv27

ControlPack

rv26

CorrelatedEventUuids ceu

Description

Name of the Collector that

generated this event.

Unique identifier for the

Collector which generated this

event.

Unique identifier for the

Collector Manager which

generated this event.

The name of the Collector

Script used by the Collector to

generate this event.

Unique identifier for the

Connector which generated

this event.

Control categorization - level 2

Control categorization - level 1

List of event UUIDs associated

with this correlated event. Only

relevant for correlated events.

Visible in

Tokenized

Basic

Detailed

View

Event Fields

149

Table of Contents

This manual is also suitable for:

Sentinel log manager 1.0.0.5

C Event Fields - Novell SENTINEL LOG MANAGER 1.0.0.5 - ADMINISTRATION GUIDE 03-31-2010 Administration Manual

Related Manuals for Novell SENTINEL LOG MANAGER 1.0.0.5 - ADMINISTRATION GUIDE 03-31-2010

Related Content for Novell SENTINEL LOG MANAGER 1.0.0.5 - ADMINISTRATION GUIDE 03-31-2010

This manual is also suitable for:

Table of Contents