Variable Fields

Additional fields may be present following the persistent fields already mentioned. These are message type dependent and can vary over time.

Event Category Event Description Agent ID Event Type ID Event ID
BeyondInsight Application Audit   appaudit    
Clarity  

mlwr

 

   
General Appliance Health   GenAppHealth    
File Integrity Monitoring  

flm

 

   
Privilege Management for Windows, Privilege Management for Mac

Application Request Elevation

Application Launched

Custom Rule Applied

Shell Rule Applied

ActiveX - Control Rule Applied

ActiveX - Application Request Elevation

UAC Prompt

Denied Rule Applied

Passive Rule Applied

Validate Policy

Policy Applied

 

pbw, pbmac

pbw, pbmac

pbw, pbmac

pbw, pbmac

pbw, pbmac

pbw, pbmac

pbw, pbmac

pbw, pbmac

pbw, pbmac

pbw, pbmac

pbw, pbmac

28691

28692

28693

28694

28695

28696

28697

28698

28699

28702

28703

PBW-EVENT-28691

PBW-EVENT-28692

PBW-EVENT-28693

PBW-EVENT-28694

PBW-EVENT-28695

PBW-EVENT-28696

PBW-EVENT-28697

PBW-EVENT-28698

PBW-EVENT-28699

PBW-EVENT-28702

PBW-EVENT-28703

Privilege Management for Windows Vulnerabilities   pbw_vulnerability    
Privilege Management for Mac Vulnerabilities   pbmac_vulnerability    
Password Safe   pbps    
Privilege Management for Unix & Linux

Accept

Finish

Keystroke

Reject

Register

Update

 

pbul

pbul

pbul

pbul

pbul

pbul

 

01

02

03

04

05

06

 

PBUL-EVENT-01

PBUL-EVENT-02

PBUL-EVENT-03

PBUL-EVENT-04

PBUL-EVENT-05

PBUL-EVENT-06

 

BeyondTrust Network Security Scanner   Retina