Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊
| Attribute | Value |
|---|---|
| Ingestion API Supported | ✓ Yes |
Source: Connector definition
| Column Name | Type | Description |
|---|---|---|
| EventName | string | Event Name |
| EventProduct | string | |
| EventType | string | |
| EventVendor | string | |
| HttpUserAgent | string | |
| SourceIp | string | |
| TimeGenerated | datetime | The timestamp (UTC) reflecting the time in which the event was generated. |
| Uri | string | |
| UserEmail | string | |
| UserName | string |
This table is used by the following solutions:
This table is ingested by the following connectors:
| Connector | Selection Criteria |
|---|---|
| SOC Prime Platform Audit Logs Data Connector |
In solution SOC Prime CCF:
| Analytic Rule | Selection Criteria |
|---|---|
| Deleted a Custom Field Mapping profile | |
| Deleted a Tenant | |
| Successful logins to SOC Prime platform from bad IP addresses |
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊