Appendix
|
Message ID |
Action |
|---|---|
|
ADM10000 |
Created Gateway |
|
ADM10001 |
Deleted Gateway |
|
ADM10002 |
Initiated reboot on Gateway |
|
ADM10003 |
Initiated Upgrade to version <ver no.> on Gateway |
|
ADM10004 |
Initiated rollback on Gateway |
|
ADM10005 |
Restarted services |
|
ADM10006 |
Created configuration |
|
ADM10007 |
Edited configuration |
|
ADM10008 |
Deleted configuration |
|
ADM10009 |
Initiated Config Import |
|
ADM10010 |
Initiated Config Export |
|
ADM10011 |
TOTP User Config Import |
|
ADM10012 |
TOTP USer Config Export |
|
ADM10013 |
Created Config sync rule |
|
ADM10014 |
Deleted Config sync rule |
|
ADM10015 |
Modified Config sync rule |
|
ADM10016 |
Triggered Config sync rule |
|
ADM10017 |
Created Admin Management > Authentication Servers > Local Auth Srvr, type: Local |
|
ADM10018 |
Updated Admin Management > Authentication Servers > SAML Auth Srvr, type: SAML Custom |
|
ADM10019 |
Deleted Admin Management > Authentication Servers > SAML Auth Srvr |
|
ADM10020 |
Created Admin Management > Authentication Servers > Local Auth Srvr > Added user: ladmin_1 |
|
ADM10021 |
Created Admin Management > Authentication Servers > Local Auth Srvr > Added users: ladmin_2, ladmin_3 |
|
ADM10022 |
Deleted Admin Management > Authentication Servers > Local Auth Srvr > Deleted user: ladmin_1 |
|
ADM10023 |
Deleted Admin Management > Authentication Servers > Local Auth Srvr > Deleted users: ladmin_2, ladmn_3 |
|
ADM10024 |
Updated Admin Management > Authentication Servers > Local Auth Srvr > Updated user: ladmin_1 |
|
ADM10025 |
Created Admin Management > Admin Rules > admin_rule1 type: Username and value: ladmin_1 |
|
ADM10026 |
Updated Admin Management > Admin Rules > admin_rule1 type: Username and value: ladmin_1 |
|
ADM10027 |
Deleted Admin Management > Admin Rules > admin_rule1 |
|
ADM10028 |
Created Admin Roles > admin_role1 |
|
ADM10029 |
Updated Admin Roles > admin_role1 from user-group: usr_grp1 to usr_grp2 |
|
ADM10030 |
Deleted Admin Role > admin_role1 |
|
ADM10031 |
Deleted Admin Roles > admin_role1, admin_role2 |
|
ADM10032 |
Created Admin Management > Admin Groups > adm_grp1 |
|
ADM10033 |
Updated Admin Management > Admin Groups > adm_grp1 from rules: adm_rule1 to adm_rule2 and admin-policy: adm_policy1 |
|
ADM10034 |
Deleted Admin Management > Admin Groups > admin group: adm_grp1 |
|
ADM10035 |
Deleted Admin Management > Admin Groups > admin rule: adm_rule2 from adm_grp1 |
|
ADM10036 |
Created Admin Management > Admin Policies > adm_policy1 |
|
ADM10037 |
Updated Admin Management > Admin Policies > adm_policy1 with primary auth-server: pri_auth_srvr1 to pri_auth_srvr2 and secondary auth-server: sec_auth_srvr1 to sec_auth_srvr2 |
|
ADM10038 |
Deleted Admin Management > Admin Policies > adm_policy1 |
|
ADM10039 |
Deleted Admin Management > Admin Policies > admin policies: adm_policy1, adm_policy2 |
|
ADM10040 |
Created Admin Management > Device Policies > dev_policy1 |
|
ADM10041 |
Updated Admin Management > Device Policies > dev_policy1 > Rules deleted: dev_rule1, dev_rule2 Rules Added: dev_rule3, dev_rule4 |
|
ADM10042 |
Deleted Admin Management > Device Policies > dev_policy1 |
|
ADM10043 |
Deleted Admin Management > Device Policies > dev_policy1 |
|
ADM10044 |
Created Admin Management > Device Policies > device rule: dev_rule1 |
|
ADM10045 |
Updated Admin Management > Device Policies > device rule: dev_rule1 |
|
ADM10046 |
Deleted Admin Management > Device Policies > device rule: dev_rule1 |
|
ADM10047 |
Deleted Admin Management > Device Policies > device rules: dev_rule1, dev_rule2 |
|
ADM10086 |
Initiated import of Device Certificate |
|
ADM10087 |
Initiated import of Client-Auth Certificate |
|
ADM10088 |
Initiated creation of Device Certificate CSR |
|
ADM10089 |
Initiated creation of Client-Auth Certificate CSR |
|
ADM10090 |
Initiated import of Code Signing Certificate |
|
ADM10091 |
Uploaded ESAP package version |
|
ADM10092 |
Deleted ESAP package version |
|
ADM10093 |
Initiated ESAP Activation on multiple nodes |
|
ADM10094 |
Initiated MultiNode Upgrade |
|
ADM10095 |
Initiated Cluster Upgrade |
|
ADM10096 |
Initiated rollback on cluster |
|
ADM10097 |
Initiated Cluster Actions like VIP-Failover, enable or disable Nodes |
|
ADM10098 |
Initiated Cluster operations like restart or reboot |
|
ADM10099 |
Updated cluster properties like mode, VIP, etc. |
|
ADM10100 |
Created ICS Gateway Cluster with nodes |
|
ADM10101 |
Added Node to ICS Gateway Cluster |
|
ADM10102 |
Removed Node From ICS Gateway Cluster |
|
ADM10103 |
Deleted ICS Gateway Cluster |
|
ADM10104 |
Deleted Named user and devices |
|
ADM10105 |
Modified Named Users Auto Delete |
|
ADM10106 |
Updated Settings > Session Options > idle_timeout: {} and max_session_length: {} |
|
ADM10110 |
Created Config sync scheduled job |
|
ADM10111 |
Deleted Config sync scheduled job |
|
ADM10112 |
Edited Config sync scheduled job |
|
AUT10076 |
Primary authentication successful for user: admin auth-server: Admin Auth |
|
AUT10077 |
Received Access Request from user: admin |
|
AUT10078 |
Started authentication with primary-auth-server |
|
AUT10079 |
Primary authentication failed for user |
|
AUT10080 |
Admin user logged out |
|
AUT10081 |
Secondary authentication successful for user |
|
AUT10082 |
User mapped to groups by rule |
|
AUT10083 |
Session created for User mapped to groups by role |
|
AUT10084 |
Secondary authentication failed for user |
|
AUT10085 |
Login succeeded for user |
|
AUT10107 |
Password changed for user |
|
SYS10048 |
Anomalies acknowledged |
|
SYS10049 |
Anomaly - Session has been successfully terminated |
|
SYS10050 |
Non-Compliance acknowledged |
|
SYS10051 |
Non-Compliance - Session has been successfully terminated |
|
SYS10052 |
User Threat score for {} reset successfully |
|
SYS10053 |
{} - {} Job successfully created |
|
SYS10054 |
Scheduled Jobs > Job(s): {} successfully deleted |
|
SYS10055 |
Scheduled Jobs > Job(s): {} successfully suspended |
|
SYS10056 |
Scheduled Jobs > Job(s): {} successfully resumed |
|
SYS10057 |
Scheduled Jobs > Job run(s): {} successfully deleted |
|
SYS10058 |
Scheduled Jobs > Job run(s): {} successfully suspended |
|
SYS10059 |
Scheduled Jobs > Job run(s): {} successfully resumed |
|
SYS10060 |
Job(s) > {} successfully downloaded |
|
SYS10061 |
Insights > Session Management, Selected Sessions {} successfully terminated |
|
SYS10062 |
Insights > Session Management, All Sessions successfully terminated |
|
SYS10063 |
Insights > Session Management, Selected Active sync sessions {} successfully terminated |
|
SYS10064 |
Insights > Session Management, All Active sync sessions successfully terminated |
|
SYS10065 |
Insights > Session Management, Blocked access for sessions with {} successfully |
|
SYS10066 |
Insights > Session Management, Allowed access for sessions with {} successfully |
|
SYS10067 |
Actionable Insights > UEBA Threat Score: {} and Action Type: {} is created successfully |
|
SYS10068 |
Actionable Insights > UEBA Threat Score: {} and Action Type: {} is updated successfully |
|
SYS10069 |
Actionable Insights > Action Type: {} deleted successfully |
|
SYS10070 |
Reports > UEBA_threat_rep is successfully sent to user: admin_1 |
|
SYS10071 |
Reports > UEBA_threat_rep is successfully generated |
|
SYS10072 |
Reports > UEBA_threat_rep is successfully deleted |
|
SYS10073 |
Reports > UEBA_threat_rep is successfully downloaded |
|
SYS10074 |
Reports > UEBA_threat_rep is successfully updated |
|
SYS10075 |
{} - {} Job successfully created for {} |