NetskopeEventsNetwork_CL

Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊

Back to Tables Index

Attribute Value
Ingestion API Supported ✓ Yes

Contents

Schema (67 columns)

Source: KQL validation test schema

Column Name Type
access_method string
action string
app string
appcategory string
category string
cci int
ccl string
client_bytes int
client_packets int
count_i int
device string
domain string
dst_country string
dst_geoip_src int
dst_latitude int
dst_location string
dst_longitude int
dst_region string
dst_zipcode string
dsthost string
dstip string
dstport int
end_time string
flow_status string
hostname string
ip_protocol string
netskope_pop string
network_session_id string
num_sessions int
numbytes int
organization_unit string
os string
os_version string
policy string
pop_id string
protocol string
protocol_port string
publisher_cn string
publisher_name string
sAMAccountName string
server_bytes int
server_packets int
session_duration int
site string
src_country string
src_geoip_src int
src_latitude int
src_location string
src_longitude int
src_region string
src_zipcode string
srcip string
srcport int
start_time string
TimeGenerated datetime
timestamp int
total_packets int
traffic_type string
tunnel_id string
tunnel_type string
tunnel_up_time int
type_s string
ur_normalized string
user string
userip string
userkey string
userPrincipalName string

Solutions (1)

This table is used by the following solutions:

Connectors (1)

This table is ingested by the following connectors:

Connector Selection Criteria
Netskope Alerts and Events (via Codeless Connector Framework)

Parsers Using This Table (1)

Other Parsers (1)

Parser Solution Selection Criteria
NetskopeEventsNetwork Netskopev2

Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊

Back to Tables Index