Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊
| Attribute | Value |
|---|---|
| Custom Log V1 | Yes 🔶 — uses type-suffixed column names |
| Ingestion API Supported | ✓ Yes |
Source: KQL validation test schema
| Column Name | Type |
|---|---|
| _ResourceId | string |
| Computer | string |
| CreatedAt_t | datetime |
| Description | real |
| DestinationCommonName | real |
| DestinationDomain | string |
| DestinationHostname | string |
| DestinationIpV4 | real |
| ExternalId | string |
| ForcepointDLPSourceIP | string |
| GeneratorId | string |
| Id | string |
| ManagementGroupName | string |
| MG | string |
| PolicyCategoryId | string |
| Protocol | string |
| RawData | string |
| RuleName_1_s | string |
| Severity_s | string |
| SourceDomain | string |
| SourceIpV4_s | string |
| SourceSystem | string |
| TenantId | string |
| Text | real |
| TimeGenerated | datetime |
| Title | string |
| Type | string |
| UpdatedAt | string |
| UpdatedBy | string |
This table is used by the following solutions:
This table is ingested by the following connectors:
| Connector | Selection Criteria |
|---|---|
| Forcepoint DLP |
In solution Forcepoint DLP:
| Workbook | Selection Criteria |
|---|---|
| ForcepointDLP |
GitHub Only:
| Workbook | Selection Criteria |
|---|---|
| ForcepointDLP |
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊