Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊
| Attribute | Value |
|---|---|
| Ingestion API Supported | ✓ Yes |
Source: KQL validation test schema
| Column Name | Type |
|---|---|
| attributes | dynamic |
| base_object | string |
| bind_error_count | int |
| duration | long |
| encrypted_sasl_payload_count | int |
| error | string |
| id_ip_ver | string |
| id_orig_h | string |
| id_orig_p | int |
| id_resp_h | string |
| id_resp_p | int |
| is_close | bool |
| is_query | bool |
| local_orig | bool |
| local_resp | bool |
| logon_failure_error_count | int |
| matched_dn | string |
| message_id | long |
| orig_hostname | string |
| orig_huid | string |
| orig_sluid | string |
| query | string |
| query_scope | string |
| request_bytes | long |
| resp_hostname | string |
| resp_huid | string |
| resp_sluid | string |
| response_bytes | long |
| result | dynamic |
| result_code | string |
| result_count | int |
| sensor_uid | string |
| TimeGenerated | datetime |
| ts | datetime |
| uid | string |
This table is used by the following solutions:
This table is ingested by the following connectors:
| Connector | Selection Criteria |
|---|---|
| [Recommended] Vectra AI Stream via AMA |
| Parser | Solution | Selection Criteria |
|---|---|---|
| vectra_ldap | Vectra AI Stream |
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊