Novell Doc: Identity Audit Guide

C.1.1 ACTVY_PARM_RPT_V

Column Name	Datatype	Comment
ACTVY_PARM_ID	uuid	Activity parameter identifier
ACTVY_ID	uuid	Activity identifier
PARM_NAME	character varying(255)	Activity Parameter name
PARM_TYP_CD	character varying(1)	Activity parameter type code
DATA_TYP	character varying(50)	Activity parameter data type
DATA_SUBTYP	character varying(50)	Activity parameter data subtype
RQRD_F	boolean	Required flag
PARM_DESC	character varying(255)	Activity parameter description
PARM_VAL	character varying(1000)	Activity parameter value
FORMATTER	character varying(255)	Activity parameter formatter
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.2 ACTVY_REF_PARM_VAL_RPT_V

Column Name	Datatype	Comment
ACTVY_ID	uuid	Activity identifier
SEQ_NUM	integer	Sequence number
ACTVY_PARM_ID	uuid	Activity parameter identifier
PARM_VAL	character varying(1000)	Activity parameter value
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.3 ACTVY_REF_RPT_V

Column Name	Datatype	Comment
ACTVY_ID	uuid	Activity identifier
SEQ_NUM	integer	Sequenece number
REFD_ACTVY_ID	uuid	Referenced activity identifier
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.4 ACTVY_RPT_V

Column Name	Datatype	Comment
ACTVY_ID	uuid	Activity identifier
ACTVY_NAME	character varying(255)	Activity name
ACTVY_TYP_CD	character varying(1)	Activity type code
ACCESS_LVL	character varying(50)	Access level
EXEC_LOC	character varying(50)	Execution location
ACTVY_DESC	character varying(255)	Activity description
PROCESSOR	character varying(255)	Processor
INPUT_FORMATTER	character varying(255)	Input formatter
OUTPUT_FORMATTER	character varying(255)	Output formatter
APP_NAME	character varying(25)	Application name
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.5 ADV_ATTACK_MAP_RPT_V

View references ADV_ATTACK_MAP table that stores Advisor map information.

Column Name	Datatype	Comment
ATTACK_KEY	integer	ID used to reference the attack entry
SERVICE_PACK_ID	integer	The Service Pack ID of the product that is effected by this attack
ATTACK_NAME	character varying(256)	Name of the Attack
ATTACK_CODE	character varying(256)	Attack code
DATE_PUBLISHED	timestamp with time zone	Date the attack has been published
DATE_UPDATED	timestamp with time zone	Date the attack has been updated
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_By	integer	User who last modified object

C.1.6 ADV_ATTACK_PLUGIN_RPT_V

View references ADV_ATTACK_PLUGIN table that stores Advisor plug-in information.

Column Name	Datatype	Comment
PLUGIN_KEY	integer	ID used to reference the vulnerability entry
SERVICE_PACK_ID	integer	Service Pack ID of the product that is identified this vulnerability
PLUGIN_ID	character varying(256)	ID of the vulnerability
PLUGIN_NAME	character varying(256)	Name of the vulnerability
DATE_PUBLISHED	timestamp with time zone	Date the vulnerability has been published
DATE_UPDATED	timestamp with time zone	Date the vulnerability has been updated
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.7 ADV_ATTACK_RPT_V

View references ADV_ATTACK table that stores Advisor attack information.

Column Name	Datatype	Comment
ATTACK_ID	integer	ID to identify the attack
TRUSECURE_ATTACK_NAME	character varying(512)	Name of the attack
FEED_DATE_CREATED	timestamp with time zone	Date when the feed first have the information on this attack
FEED_DATE_UPDATED	timestamp with time zone	Last date when the information on this attack has been updated
ATTACK_CATEGORY	character varying(256)	Category of the attack
URGENCY_ID	integer	The urgency associated with this attack
SEVERITY_ID	integer	Severity associated with this attack
LOCAL	integer	Indicates if this attack was executed locally
REMOTE	integer	Indicates if this attack was executed from remote
DESCRIPTION	Text	Description of the attack
SCENARIO	Text	Scenario how the attack could be made
IMPACT	Text	Impact of the attack
SAFEGUARDS	Text	Safeguards that could be followed to avert the attack
PATCHES	Text	Patches for the product to fix the vulnerability exploited by the attack
FALSE_POSITIVES	Text	False Positives associated with this attack
DATE_PUBLISHED	timestamp with time zone	Date the information on this attack was published
DATE_UPDATED	timestamp with time zone	Date the information on this attack was updated
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.8 ADV_ATTACK_SIGNATURES

Column Name	Datatype	Comment
ATTACK_KEY	integer	Attack ID
ATTACK_SCANNER_NAME	character varying(128)	Name of the attack scanner or intrusion detection system
ATTACK_NAME	character varying(256)	Name of the attack
ATTACK_ID	character varying(256)	ID of the attack

C.1.9 ADV_FEED_RPT_V

View references ADV_FEED table that stores Advisor feed information, such as feed name and date.

Column Name	Datatype	Comment
FEED_NAME	character varying(128)	Name of feed
FEED_FILE	character varying(256)	File name that contains the feed data
BEGIN_DATE	timestamp with time zone	The date from which this feed file carries the advisor information
END_DATE	timestamp with time zone	The date until which this feed file carries the advisor information
FEED_INSERT	integer	Number of rows inserted into the advisor schema by this feed file
FEED_UPDATE	integer	Number of rows updated into the advisor schema by this feed file
FEED_EXPIRE	integer	Number of rows deleted into the advisor schema by this feed file

C.1.10 ADV_MASTER_RPT_V

Column Name	Datatype	Comment
MASTER_ID	integer	ID that associates PLUGIN_KEY, ATTACK_KEY and VULN_KB_ID
PLUGIN_KEY	integer	ID to reference the ADV_ATTACK_PLUGIN_V
ATTACK_KEY	integer	ID to reference the ADV_ATTACK_MAP_V
VULN_KB_ID	integer	ID to reference the VULN_KB_ID_V
DATE_PUBLISHED	timestamp with time zone	Date the entry was published
DATE_UPDATED	timestamp with time zone	Date the entry was updated
BEGIN_EFFECTIVE_DATE	timestamp with time zone	Date from which the entry is valid
END_EFFECTIVE_DATE	timestamp with time zone	Date until which the entry is valid
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.11 ADV_PRODUCT_RPT_V

View references ADV_PRODUCT table that stores Advisor product information such as vendor and product ID.

Column Name	Datatype	Comment
PRODUCT_ID	integer	ID of the product
VENDOR_ID	integer	ID of the vendor
PRODUCT_CATEGORY_ID	integer	ID of the Product Category
PRODUCT_CATEGORY_NAME	character varying(128)	Product Category Name
PRODUCT_TYPE_ID	integer	ID of the product type
PRODUCT_TYPE_NAME	character varying(256)	Name of the Product Type
PRODUCT_NAME	character varying(128)	Product Name
PRODUCT_DESCRIPTION	character varying(512)	Product Descritpion
FEED_DATE_CREATED	timestamp with time zone	Date of the Feed that carried information on this product
FEED_DATE_UPDATED	timestamp with time zone	Date of the Feed that updated information on this product
ACTIVE_FLAG	integer	Reserved for future use
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.12 ADV_PRODUCT_SERVICE_PACK_RPT_V

View references ADV_PRODUCT_SERVICE _PACK table that stores Advisor service pack information, such as service pack name, version ID and date.

Column Name	Datatype	Comment
SERVICE_PACK_ID	integer	Service Pack ID
VERSION_ID	integer	Version ID
SERVICE_PACK_NAME	character varying(32)	Name of the Service Pack
FEED_DATE_CREATED	timestamp with time zone	Date of the Feed that carried information on this product
FEED_DATE_UPDATED	timestamp with time zone	Date of the Feed that updated information on this product
ACTIVE_FLAG	integer	Reserved for future use
BEGIN_EFFECTIVE_DATE	timestamp with time zone	Date from which the entry is valid
END_EFFECTIVE_DATE	timestamp with time zone	Date until which the entry is valid
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.13 ADV_PRODUCT_VERSION_RPT_V

View references ADV_PRODUCT_VERSION table that stores Advisor product version information, such as version name, product and version ID.

Column Name	Datatype	Comment
VERSION_ID	integer	Version ID
PRODUCT_ID	integer	Product ID
VERSION_NAME	character varying(128)	Version Name of the product
FEED_DATE_CREATED	timestamp with time zone	Date of the feed that carried the information on the entry
FEED_DATE_UPDATED	timestamp with time zone	Date of the feed that carried the update on the entry
ACTIVE_FLAG	integer	Reserved for future use
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.14 ADV_VENDOR_RPT_V

Column Name	Datatype	Comment
VENDOR_ID	bigint	ID of the vendor
VENDOR_NAME	character varying(128)	Name of the vendor
CONTACT_PERSON	character varying(128)	Contains the contact person name for the vendor
ADDRESS_LINE_1	character varying(128)	Address of the vendor
ADDRESS_LINE_2	character varying(128)	Address of the vendor
ADDRESS_LINE_3	character varying(128)	Address of the vendor
ADDRESS_LINE_4	character varying(128)	Address of the vendor
CITY	character varying(128)	City of the vendor
STATE	character varying(128)	State of the vendor
COUNTRY	character varying(128)	Country of the vendor
ZIP_CODE	character varying(128)	Zip code of the vendor
URL	character varying(256)	Web URL of the vendor
PHONE	character varying(32)	Contact number of the vendor
FAX	character varying(32)	Fax number of the vendor
EMAIL	character varying(128)	Email of the vendor
PAGER	character varying(32)	Pager of the vendor
FEED_DATE_CREATED	timestamp with time zone	Date of the feed that carried the information on the entry
FEED_DATE_UPDATED	timestamp with time zone	Date of the feed that carried the update on the entry
ACTIVE_FLAG	integer	Reserved for future use
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.15 ADV_VULN_KB_RPT_V

Column Name	Datatype	Comment
VULN_KB_ID	integer	Knowledge base ID mapping CVE_ID, OSVDB_ID, BUGTRAQ_ID
CVE_ID	integer	CVE ID for the related vulnerability
OSVDB_ID	integer	OSVDB ID for the related vulnerability
BUGTRAQ_ID	integer	Bugtraq id for the related vulnerability
DATE_PUBLISHED	timestamp with time zone	Date the entry was published
DATE_UPDATED	timestamp with time zone	Date the entry was updated
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.16 ADV_VULN_PRODUCT_RPT_V

View references ADV_VULN_PRODUCT table that stores Advisor vulnerability attack ID and service pack ID.

Column Name	Datatype	Comment
SERVICE_PACK_ID	integer	Contains the service pack id
ATTACK_ID	integer	Contains the attack id
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.17 ADV_VULN_SIGNATURES

Column Name	Datatype	Comment
VULN_KEY	integer	Vulnerability key
VULN_SCANNER_NAME	character varying(128)	Vulnerability scanner name
VULN_NAME	character varying(256)	Vulnerability name
VULN_ID	character varying(256)	Vulnerability ID

C.1.18 ANNOTATIONS_RPT_V

View references ANNOTATIONS table that stores documentation or notes that can be associated with objects in the Sentinel system such as cases and incidents.

Column Name	Datatype	Comment
ANN_ID	integer	Annotation identfier - sequence number.
TEXT	character varying(4000)	Documentation or notes.
ACTION	character varying(255)	Action
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
MODIFIED_BY	integer	User who last modified object
CREATED_BY	integer	User who created object

C.1.19 ASSET_CATEGORY_RPT_V

View references ASSET_CTGRY table that stores information about asset categories.

Column Name	Datatype	Comment
ASSET_CATEGORY_ID	bigint	Asset category identifier
ASSET_CATEGORY_NAME	character varying(100)	Asset category name
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.20 ASSET_HOSTNAME_RPT_V

View references ASSET_HOSTNAME table that stores information about alternate host names for assets.

Column Name	Datatype	Comment
ASSET_HOSTNAME_ID	uuid	Asset alternate hostname identifier
PHYSICAL_ASSET_ID	uuid	Physical asset identifier
HOST_NAME	character varying(255)	Host name
CUST_ID	bigint	Customer identifier
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.21 ASSET_IP_RPT_V

View references ASSET_IP table that stores information about alternate IP addresses for assets.

Column Name	Datatype	Comment
ASSET_IP_ID	uuid	Asset alternate IP identifier
PHYSICAL_ASSET_ID	uuid	Physical asset identifier
IP_ADDRESS	integer	Asset IP address
CUST_ID	bigint	Customer identifier
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.22 ASSET_LOCATION_RPT_V

View references ASSET_LOC table that stores information about asset locations.

Column Name	Datatype	Comment
LOCATION_ID	bigint	Location identifier
CUST_ID	bigint	Customer identifier
BUILDING_NAME	character varying(255)	Building name
ADDRESS_LINE_1	character varying(255)	Address line 1
ADDRESS_LINE_2	character varying(255)	Address line 2
CITY	character varying(100)	City
STATE	character varying(100)	State
COUNTRY	character varying(100)	Country
ZIP_CODE	character varying(50)	Zip code
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.23 ASSET_RPT_V

View references ASSET table that stores information about the physical and soft assets.

Column Name	Datatype	Comment
ASSET_ID	uuid	Asset identifier
CUST_ID	bigint	Customer identifier
ASSET_NAME	character varying(255)	Asset name
PHYSICAL_ASSET_ID	uuid	Physical asset identifier
PRODUCT_ID	bigint	Product identifier
ASSET_CATEGORY_ID	bigint	Asset category identifier
ENVIRONMENT_IDENTITY_CD	bigint	Environment identify code
PHYSICAL_ASSET_IND	boolean	Physical asset indicator
ASSET_VALUE_CODE	bigint	Asset value code
CRITICALITY_ID	bigint	Asset criticality code
SENSITIVITY_ID	bigint	Asset sensitivity code
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.24 ASSET_VALUE_RPT_V

View references ASSET_VAL_LKUP table that stores information about the asset value.

Column Name	Datatype	Comment
ASSET_VALUE_ID	bigint	Asset value code
ASSET_VALUE_NAME	character varying(50)	Asset value name
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.25 ASSET_X_ENTITY_X_ROLE_RPT_V

View references ASSET_X_ENTITY_X_ROLE table that associates a person or an organization to an asset.

Column Name	Datatype	Comment
PERSON_ID	uuid	Person identifier
ORGANIZATION_ID	uuid	Organization identifier
ROLE_CODE	character varying(5)	Role code
ASSET_ID	uuid	Asset identifier
ENTITY_TYPE_CODE	character varying(5)	Entity type code
PERSON_ROLE_SEQUENCE	integer	Order of persons under a particular role
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.26 ASSOCIATIONS_RPT_V

View references ASSOCIATIONS table that associates users to incidents, incidents to annotations and so on.

Column Name	Datatype	Comment
TABLE1	character varying(64)	Table name 1. For example, incidents
ID1	integer	ID1. For example, incident ID.
TABLE2	character varying(64)	Table name 2. For example, users.
ID2	integer	ID2. For example, user ID.
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.27 ATTACHMENTS_RPT_V

View references ATTACHMENTS table that stores attachment data.

Column Name	Datatype	Comment
ATTACHMENT_ID	integer	Attachment identifier
NAME	character varying(255)	Attachment name
SOURCE_REFERENCE	character varying(64)	Source reference
TYPE	character varying(32)	Attachment type
SUB_TYPE	character varying(32)	Attachment subtype
FILE_EXTENSION	character varying(32)	File extension
ATTACHMENT_DESCRIPTION	character varying(255)	Attachment description
DATA	text	Attachment data
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.28 AUDIT_RECORD_RPT_V

View reference AUDIT_RECORD table that stores Sentinel internal audit data.

Column Name	Datatype	Comment
AUDIT_ID	uuid	Audit record identifier
AUDIT_TYPE	character varying(255)	Audit type
SRC	character varying(255)	Audit source
SENDER_HOSTNAME	character varying(255)	Sender hostname
SENDER_HOST_IP	character varying(255)	Sender host IP
SENDER_CONTAINER	character varying(255)	Sender container name
SENDER_ID	character varying(255)	Sender Identifier
CLIENT	character varying(255)	Client application that requested audit
EVT_NAME	character varying(255)	Event name
RES	character varying(255)	Event resource
SRES	character varying(255)	Event sub-resource
MSG	character varying(500)	Event message
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified

C.1.29 CONFIGS_RPT_V

View references CONFIGS table that stores general configuration information of the application.

Column Name	Datatype	Comment
USR_ID	character varying(32)	User name.
APPLICATION	character varying(255)	Application identifier
UNIT	character varying(64)	Application unit
VALUE	character varying(255)	Text value if any
DATA	text	XML data
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.30 CONTACTS_RPT_V

View references CONTACTS table that stores contact information.

Column Name	Datatype	Comment
CNT_ID	integer	Contact ID - Sequence number
FIRST_NAME	character varying(20)	Contact first name.
LAST_NAME	character varying(30)	Contact last name.
TITLE	character varying(128)	Contact title
DEPARTMENT	character varying(128)	Department
PHONE	character varying(64)	Contact phone
EMAIL	character varying(255)	Contact email
PAGER	character varying(64)	Contact pager
CELL	character varying(64)	Contact cell phone
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.31 CORRELATED_EVENTS_RPT_V (legacy view)

This view is provided for backward compatibility. New reports should use CORRELATED_EVENTS_RPT_V1 because this view does not include archived correlated events that have been imported back into the database.

C.1.32 CORRELATED_EVENTS_RPT_V1

View contains current and historical correlated events (correlated events imported from archives).

Column Name	Datatype	Comment
PARENT_EVT_ID	uuid	Event Universal Unique Identifier (UUID) of parent event
CHILD_EVT_ID	uuid	Event Universal Unique Identifier (UUID) of child event
PARENT_EVT_TIME	timestamp with time zone	Parent event time
CHILD_EVT_TIME	timestamp with time zone	Child event time
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.33 CRITICALITY_RPT_V

View references CRIT_LKUP table that contains information about asset criticality.

Column Name	Datatype	Comment
CRITICALITY_ID	bigint	Asset criticality code
CRITICALITY_NAME	character varying(50)	Asset criticality name
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.34 CUST_HIERARCHY_V

View references CUST_HIERARCHY table that stores information about MSSP customer hierarchy.

Column Name	Datatype	Comment
CUST_HIERARCHY_ID	bigint	Customer hierarchy ID
CUST_NAME	character varying(255)	Customer
CUST_HIERARCHY_LVL1	character varying(255)	Customer hierarchy level 1
CUST_HIERARCHY_LVL2	character varying(255)	Customer hierarchy level 2
CUST_HIERARCHY_LVL3	character varying(255)	Customer hierarchy level 3
CUST_HIERARCHY_LVL4	character varying(255)	Customer hierarchy level 4
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.35 CUST_RPT_V

View references CUST table that stores customer information for MSSPs.

Column Name	Datatype	Comment
CUST_ID	bigint	Customer identifier
CUSTOMER_NAME	character varying(255)	Customer name
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.36 ENTITY_TYPE_RPT_V

View references ENTITY_TYP table that stores information about entity types (person, organization).

Column Name	Datatype	Comment
ENTITY_TYPE_CODE	character varying(5)	Entity type code
ENTITY_TYPE_NAME	character varying(50)	Entity type name
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.37 ENV_IDENTITY_RPT_V

View references ENV_IDENTITY_LKUP table that stores information about asset environment identity.

Column Name	Datatype	Comment
ENVIRONMENT_IDENTITY_ID	bigint	Environment identity code
ENV_IDENTITY_NAME	character varying(255)	Environment identity name
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.38 ESEC_CONTENT_GRP_CONTENT_RPT_V

Column Name	Datatype	Comment
CONTENT_GRP_ID	uuid	Content group identifier
CONTENT_ID	character varying(255)	Content identifier
CONTENT_TYP	character varying(100)	Content type
CONTENT_HASH	character varying(255)	Content hash
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.39 ESEC_CONTENT_GRP_RPT_V

Column Name	Datatype	Comment
CONTENT_GRP_ID	uuid	Content group identifier
CONTENT_GRP_NAME	character varying(255)	Content group name
CONTENT_GRP_DESC	text	Content group description
CTRL_ID	uuid	Control identifier
CONTENT_EXTERNAL_ID	character varying(255)	Content external identifier
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.40 ESEC_CONTENT_PACK_RPT_V

Column Name	Datatype	Comment
CONTENT_PACK_ID	uuid	Content pack identifier
CONTENT_PACK_DESC	text	Content pack description
CONTENT_PACK_NAME	character varying(255)	Content pack name
CONTENT_EXTERNAL_ID	character varying(255)	Content external identifier
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
DATE_CREATED	timestamp with time zone	Date the entry was created
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.41 ESEC_CONTENT_RPT_V

Column Name	Datatype	Comment
CONTENT_ID	character varying(255)	Content identifier
CONTENT_NAME	character varying(255)	Content name
CONTENT_DESC	text	Content description
CONTENT_STATE	integer	Content state
CONTENT_TYP	character varying(100)	Content type
CONTENT_CONTEXT	text	Content cotext
CONTENT_HASH	character varying(255)	Content hash
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
MODIFIED_BY	integer	User who last modified object
CREATED_BY	integer	User who created object

C.1.42 ESEC_CTRL_CTGRY_RPT_V

Column Name	Datatype	Comment
CTRL_CTGRY_ID	uuid	Control category identifier
CTRL_CTGRY_DESC	text	Control category description
CTRL_CTGRY_NAME	character varying(255)	Control category name
CONTENT_PACK_ID	uuid	Content pack identifier
CONTENT_EXTERNAL_ID	character varying(255)	Content external identifier
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.43 ESEC_CTRL_RPT_V

Column Name	Datatype	Comment
CTRL_ID	uuid	Control identifier
CTRL_NAME	character varying(255)	Control name
CTRL_DESC	text	Control description
CTRL_STATE	integer	Control state
CTRL_NOTES	text	Control notes
CTRL_CTGRY_ID	uuid	Control category identifier
CONTENT_EXTERNAL_ID	character varying(255)	Content external identifier
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.44 ESEC_DISPLAY_RPT_V

View references ESEC_DISPLAY table that stores displayable properties of objects. Currently used in renaming meta-tags. Used with Event Configuration (Business Relevance).

Column Name	Datatype	Comment
DISPLAY_OBJECT	character varying(32)	The parent object of the property
TAG	character varying(32)	The native tag name of the property
LABEL	character varying(32)	The display string of tag.
POSITION	integer	Position of tag within display.
WIDTH	integer	The column width
ALIGNMENT	integer	The horizontal alignment
FORMAT	integer	The enumerated formatter for displaying the property
ENABLED	boolean	Indicates if the tag is shown.
TYPE	integer	Indicates datatype of tag. 1 = string 2 = ulong 3 = date 4 = uuid 5 = ipv4
DESCRIPTION	character varying(255)	Textual description of the tag
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object
REF_CONFIG	character varying(4000)	Referential data configuration

C.1.45 ESEC_PORT_REFERENCE_RPT_V

View references ESEC_PORT_REFERENCE table that stores industry standard assigned port numbers.

Column Name	Datatype	Comment
PORT_NUMBER	integer	Per http://www.iana.org/assignments/port-numbers, the numerical representation of the port. This port number is typically associated with the Transport Protocol level in the TCP/IP stack.
PROTOCOL_NUMBER	integer	Per http://www.iana.org/assignments/protocol-numbers, the numerical identifiers used to represent protocols that are encapsulated in an IP packet.
PORT_KEYWORD	character varying(64)	Per http://www.iana.org/assignments/port-numbers, the keyword representation of the port.
PORT_DESCRIPTION	character varying(512)	Port description.
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.46 ESEC_PROTOCOL_REFERENCE_RPT_V

View references ESEC_PROTOCOL_REFERENCE table that stores industry standard assigned protocol numbers.

Column Name	Datatype	Comment
PROTOCOL_NUMBER	integer	Per http://www.iana.org/assignments/protocol-numbers, the numerical identifiers used to represent protocols that are encapsulated in an IP packet.
PROTOCOL_KEYWORD	character varying(64)	Per http://www.iana.org/assignments/protocol-numbers, the keyword used to represent protocols that are encapsulated in an IP packet.
PROTOCOL_DESCRIPTION	character varying(512)	IP packet protocol description.
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.47 ESEC_SEQUENCE_RPT_V

View references ESEC_SEQUENCE table that’s used to generate primary key sequence numbers for Sentinel tables.

Column Name	Datatype	Comment
TABLE_NAME	character varying(32)	Name of the table.
COLUMN_NAME	character varying(255)	Name of the column
SEED	integer	Current value of primary key field.
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.48 ESEC_UUID_UUID_ASSOC_RPT_V

Column Name	Datatype	Comment
OBJECT1	character varying(64)	Object 1
ID1	uuid	UUID for object 1
OBJECT2	character varying(64)	Object 2
ID2	uuid	UUID for object 2
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.49 EVENTS_ALL_RPT_V (legacy view)

This view is provided for backward compatibility. View contains current and historical events (events imported from archives).

C.1.50 EVENTS_ALL_RPT_V1 (legacy view)

This view is provided for backward compatibility. New reports should use EVENTS_RPT_V2. View contains current events.

C.1.51 EVENTS_ALL_V (legacy view)

This view is provided for backward compatibility. New reports should use EVENTS_RPT_V2.

C.1.52 EVENTS_RPT_V (legacy view)

This view is provided for backward compatibility. New reports should use EVENTS_RPT_V2. View contains current and historical events.

C.1.53 EVENTS_RPT_V1 (legacy view)

This view is provided for backward compatibility. New reports should use EVENTS_RPT_V2. View contains current events.

C.1.54 EVENTS_RPT_V2

This is the primary reporting view. View contains current event and historical events.

Column Name	Datatype	Comment
EVENT_ID	uuid	Event identifier
RESOURCE_NAME	character varying(255)	Resource name
SUB_RESOURCE	character varying(255)	Subresource name
SEVERITY	integer	Event severity
EVENT_PARSE_TIME	timestamp with time zone	Event time
EVENT_DATETIME	timestamp with time zone	Event time
EVENT_DEVICE_TIME	timestamp with time zone	Event device time
SENTINEL_PROCESS_TIME	timestamp with time zone	Sentinel process time
BEGIN_TIME	timestamp with time zone	Events begin time
END_TIME	timestamp with time zone	Events end time
REPEAT_COUNT	integer	Events repeat count
DESTINATION_PORT_INT	integer	Destination port (integer)
SOURCE_PORT_INT	integer	Source port (integer)
BASE_MESSAGE	character varying(4000)	Base message
EVENT_NAME	character varying(255)	Name of the event as reported by the sensor
EVENT_TIME	character varying(255)	Event time as reported by the sensor
CUST_ID	bigint	Customer identifier
SOURCE_ASSET_ID	bigint	Source Asset ID
DESTINATION_ASSET_ID	bigint	Destination Asset ID
AGENT_ID	bigint	Collector identifier
PROTOCOL_ID	bigint	Protocol ID
ARCHIVE_ID	bigint	Archieve ID
SOURCE_IP	integer	Source IP address in numeric format
SOURCE_IP_DOTTED	character varying	Source IP in dotted format
SOURCE_HOST_NAME	character varying(255)	Source host name
SOURCE_PORT	character varying(32)	Source port
DESTINATION_IP	integer	Destination IP address in numeric format
DESTINATION_IP_DOTTED	character varying	Destination IP in dotted format
DESTINATION_HOST_NAME	character varying(255)	Destination host name
DESTINATION_PORT	character varying(32)	Destination port
SOURCE_USER_NAME	character varying(255)	Source user name
DESTINATION_USER_NAME	character varying(255)	Destination user name
FILE_NAME	character varying(1000)	File name
EXTENDED_INFO	character varying(1000)	Extened information
CUSTOM_TAG_1	character varying(255)	Customer Tag 1
CUSTOM_TAG 2	character varying(255)	Customer Tag 2
CUSTOM_TAG 3	integer	Customer Tag 3
RESERVED_TAG_1	character varying(255)	Reserved Tag 1 Reserved for future use by Sentinel. This field is used for Advisor information concerning attack descriptions.
RESERVED_TAG_2	character varying(255)	Reserved for future use by Sentinel. Use of this field for any other purpose might result in data being overwritten by future functionality.
RESERVED_TAG_3	integer	Reserved for future use by Sentinel. Use of this field for any other purpose might result in data being overwritten by future functionality.
VULNERABILITY_RATING	integer	Vulnerability rating
CRITICALITY_RATING	integer	Criticality rating
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object
RV01 - 10	integer	Reserved Value 1 - 10 Reserved for future use by Sentinel. Use of this field for any other purpose might result in data being overwritten by future functionality.
RV11 - 20	timestamp with time zone	Reserved Value 1 - 31 Reserved for future use by Sentinel. Use of this field for any other purpose might result in data being overwritten by future functionality.
RV21 - 25	uuid	Reserved Value 21 - 25 Reserved for future use by Sentinel to store UUIDs. Use of this field for any other purpose might result in data being overwritten by future functionality.
RV26 - 31	character varying(255)	Reserved Value 26 - 31 Reserved for future use by Sentinel. Use of this field for any other purpose might result in data being overwritten by future functionality.
RV33	character varying(255)	Reserved Value 33 Reserved for EventContex Use of this field for any other purpose might result in data being overwritten by future functionality.
RV34	character varying(255)	Reserved Value 34 Reserved for SourceThreatLevel Use of this field for any other purpose might result in data being overwritten by future functionality.
RV35	character varying(255)	Reserved Value 35 Reserved for SourceUserCotext. Use of this field for any other purpose might result in data being overwritten by future functionality.
RV36	character varying(255)	Reserved Value 36 Reserved for DataCotext. Use of this field for any other purpose might result in data being overwritten by future functionality.
RV37	character varying(255)	Reserved Value 37 Reserved for SourceFunction. Use of this field for any other purpose might result in data being overwritten by future functionality.
RV38	character varying(255)	Reserved Value 38 Reserved for SourceOperationalCotext. Use of this field for any other purpose might result in data being overwritten by future functionality.
RV40 - 43	character varying(255)	Reserved Value 40 - 43 Reserved for future use by Sentinel. Use of this field for any other purpose might result in data being overwritten by future functionality.
RV44	character varying(255)	Reserved Value 44 Reserved for DestinationThreatLevel. Use of this field for any other purpose might result in data being overwritten by future functionality.
RV45	character varying(255)	Reserved Value 45 Reserved for DestinationUserCotext. Use of this field for any other purpose might result in data being overwritten by future functionality.
RV46	character varying(255)	Reserved Value 46 Reserved for VirusStatus. Use of this field for any other purpose might result in data being overwritten by future functionality.
RV47	character varying(255)	Reserved Value 47 Reserved for future use by Sentinel. Use of this field for any other purpose might result in data being overwritten by future functionality.
RV48	character varying(255)	Reserved Value 48 Reserved for DestinationOperationalCotext. Use of this field for any other purpose might result in data being overwritten by future functionality.
RV49	character varying(255)	Reserved Value 49 Reserved for future use by Sentinel. Use of this field for any other purpose might result in data being overwritten by future functionality.
TAXONOMY_ID	bigint	Taxonomy ID
REFERENCE_ID_01 - 20	bigint	Reserved for future use by Sentinel. Use of this field for any other purpose might result in data being overwritten by future functionality.
CV01 - 10	integer	Custom Value 1 - 10 Reserved for use by Customer, typically for association of Business relevant data
CV11 - 20	timestamp with time zone	Custom Value 11 - 20 Reserved for use by Customer, typically for association of Business relevant data
CV21 - 29	character varying(255)	Custom Value 21 – 29 Reserved for use by Customer, typically for association of Business relevant data
CV30 - 34	character varying(4000)	Custom Value 30 – 34 Reserved for use by Customer, typically for association of Business relevant data
CV35 - 100	character varying(255)	Custom Value 35 – 100 Reserved for use by Customer, typically for association of Business relevant data

C.1.55 EVENTS_RPT_V3

Column Name	Datatype	Comment
Event_ID	uuid	Event identifier
Resource_Name	character varying(255)	Resource name
Sub_Resource	character varying(255)	Subresource name
Severity	integer	Event severity
Event_Parse_Time	timestamp with time zone	Event time
Event_datetime	timestamp with time zone	Event date time
Event_Device_Time	timestamp with time zone	Event device time
Sentinel_Process_Time	timestamp with time zone	Sentinel process time
Begin_Time	timestamp with time zone	Events begin time
End_Time	timestamp with time zone	Events end time
repeat_count	integer	Repeat count
Target_Service_Port	integer	Target service port
Event_Time	character varying(255)	Event time
Init_Asset_id	bigint	Initiator asset identifier
Target_Asset_id	bigint	Target asset identifier
Target_IP	integer	Target IP address in numeric format
Target_IP_Dotted	character varying(16)	Target IP address in dotted format
Target_Host_Name	character varying(255)	Target host name
Init_User_Name	character varying(255)	Initiator user name
Target_User_Name	character varying(255)	Target user name
File_Name	character varying(1000)	File name
Extended_Info	character varying(1000)	Extened information
Init_User_ Id	character varying(255)	Initiator user ID
Init_Usr_Identity	uuid	Initiator user identity
Target_User_Id	character varying(255)	Target user ID
Target_User_Identity	uuid	Target user identity
Effective_User_Name	character varying(255)	Effective user name
Effective_User_Sys_Id	character varying(255)	Effective user ID
Effective_User_Domain	character varying(255)	Effective user domain
Target_Trust_Name	character varying(255)	Target trust name
Target_Trust_Sys_Id	character varying(255)	Target trust ID
Target_Trust_Domain	character varying(255)	Target trust domain
Observer_Ip	integer	Observer IP address in numeric format
Reporter_Ip	integer	Reporter IP address in numeric format
Observer_Host_Domain	character varying(255)	Observer host domain
Reporter_Host_Domain	character varying(255)	Reporter host domain
Observer_Asset_Id	character varying(255)	Observer asset identifier
Reporter_Asset_Id	character varying(255)	Reporter asset identifier
Init_Service_Comp	character varying(255)	Initiator service component
Target_Service_Comp	character varying(255)	Target service component
Custom_Tag_1	character varying(255)	Customer Tag 1
Custom_Tag_2	character varying(255)	Customer Tag 2
Custom_Tag_3	integer	Customer Tag 3
Reserved_Tag_1	character varying(255)
Reserved_Tag_2	character varying(255)
Reserved_Tag_3	integer
Vulnarability_Rating	integer
Criticality_Rating	integer
Date_Created	timestamp with time zone	Date the entry was created
Date_Modified	timestamp with time zone	Date the entry was modified
Created_By	integer	User who created object
Modified_By	integer	User who last modified object
RV01	integer
Event_Metric	integer	Event metric
Data_Tag_Id	integer	Data tag ID
RV04-RV10	integer
RV11-RV20	timestamp with time zone
RV21-RV28	character varying(255)
Init_IP_Country	character varying(255)	Initiator country
Target_IP_Country	character varying(255)	Target country
RV31 RV33 RV36 RV40 RV43 RV46 RV49	character varying(255)
Init_Threat_Level	character varying(255)	Initiator threat level
Init_User_Domain	character varying(255)	Initiator user domain
Init_Function	character varying(255)	Initiator function
Init_Operational_Cotext	character varying(255)	Initiator operational cotext
Target_Host_Domain	character varying(255)	Target host domain
Target_Threat_Level	character varying(255)	Target threat level
Target_User_Domain	character varying(255)	Target user domain
Target_Function	character varying(255)	Target function
Target_Operational_Cotext	character varying(255)	Target operational cotext
Taxonomy_id	bigint	Taxonomy identifier
Reference_id_1	bigint
XDAS_Taxonomy_Id	bigint	XDAS Taxonomy identifier
Reference_id_2-Reference_id_20
CV01-CV10	integer
CV11-CV20	timestamp with time zone
CV21-CV29	character varying(255)
CV30-CV34	character varying(4000)
CV35-CV100	character varying(255)
Customer_Var_101-Customer_Var_110	integer
Customer_Var_111-Customer_Var_120	timestamp with time zone
Customer_Var_121-Customer_Var_130	uuid
Customer_Var_131-Customer_Var_140	integer
Customer_Var_141-Customer_Var_150	character varying(255)

C.1.56 EVT_AGENT_RPT_V

View references EVT_AGENT table that stores information about Collectors.

Column Name	Datatype	Comment
Agent_ID	bigint	Collector identifier
CUST_ID	bigint	Customer identifier
Agent	character varying(64)	Collector name
Port	character varying(64)	Collector port
Report_Name	character varying(255)	Reporter name
Product_Name	character varying(255)	Product name
Sensor_Name	character varying(255)	Sensor name
Sensor_Type	character varying(5)	Sensor type: H - host-based N - network-based V - virus O - other
Device_Category	character varying(255)	Device category
Source_UUID	uuid	Source component Universal Unique Identifier (UUID)
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.57 EVT_AGENT_RPT_V3

Column Name	Datatype	Comment
Agent_ID	bigint	Collector identifier
Cust_ID	bigint	Customer identifier
Agent	character varying(64)	Collector
Port	character varying(64)	Port
Reporter_Host_Name	character varying(255)	Reporter host name
Sensor_Type	character varying(5)	Sensor type: H - host-based N - network-based V - virus O - other
Device_Category	character varying(255)	Device category
Source_UUID	uuid	Source component Universal Unique Identifier (UUID)
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.58 EVT_ASSET_RPT_V

View references EVT_ASSET table that stores asset information.

Column Name	Datatype	Comment
Event_Asset_ID	bigint	Event asset identifier
CUST_ID	bigint	Customer identifier
Asset_Name	character varying(255)	Asset name
Physical_Asset_Name	character varying(255)	Physical asset name
Reference_Asset_IDcharacter varying(100)	Reference asset identifier, links to source asset management system.	Reference_Asset_IDcharacter varying(100)
Mac_Address	character varying(100)	MAC address
Rack_Number	character varying(50)	Rack number
Room_Name	character varying(100)	Room name
Building_Name	character varying(255)	Building name
City	character varying(100)	City
State	character varying(100)	State
Country	character varying(100)	Country
Zip_Code	character varying(50)	Zip code
Asset_Category_Name	character varying(100)	Asset category name
Network_Identity_Name	character varying(255)	Asset network identity name
Environment_Identity_Name	character varying(255)	Environment name
Asset_Value_Name	character varying(50)	Asset value name
Criticality_Name	character varying(50)	Asset criticality name
Sensitivity_Name	character varying(50)	Asset sensitivity name
Contact_Name_1	character varying(255)	Name of contact person/organization 1
Contact_Name_2	character varying(255)	Name of contact person/organization 2
Organization_Name_1	character varying(100)	Asset owner organization level 1
Organization_Name_2	character varying(100)	Asset owner organization level 2
Organization_Name_3	character varying(100)	Asset owner organization level 3
Organization_Name_4	character varying(100)	Asset owner organization level 4
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.59 EVT_ASSET_RPT_V3

Asset_Department	character varying(100)	Asset department
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.60 EVT_DEST_EVT_NAME_SMRY_1_RPT_V

View summarizes event count by destination, taxonomy, event name, severity and event time.

Column Name	Datatype	Comment
Destination_IP	integer	Destination IP address
Destination_Event_Asset_ID	bigint	Event asset identifier
Taxonomy_ID	bigint	Taxonomy identifier
Event_Name_ID	bigint	Event name identifier
Severity	integer	Event severity
CUST_ID	bigint	Customer identifier
Event_Tme	timestamp with time zone	Event time
Event_Count	integer	Event count
Date_Created	timestamp with time zone	Date the entry was created
Date_Modified	timestamp with time zone	Date the entry was modified
Created_By	integer	User who created object
Modified_By	integer	User who last modified object
Destination_Host_Name	character varying(255)	Destination host name

C.1.61 EVT_DEST_SMRY_1_RPT_V

View contains event destination summary information.

Column Name	Datatype	Comment
Destination_IP	integer	Destination IP address
Destination_Event_Asset_ID	bigint	Event asset identifier
Destination_Port	character varying(32)	Destination port
Destination_Usr_ID	bigint	Destination user identifier
Taxonomy_ID	bigint	Taxonomy identifier
Event_Name_ID	bigint	Event name identifier
Resource_ID	bigint	Resource identifier
Agent_ID	bigint	Collector identifier
Protocol_ID	bigint	Protocol identifier
Severity	integer	Event severity
CUST_ID	bigint	Customer identifier
Event_Time	timestamp with time zone	Event time
XDAS_Taxonomy_id	bigint	XDAS taxonomy identifier
Target_User_Identity	uuid	Target user identity
Event_Count	integer	Event count
Date_Created	timestamp with time zone	Date the entry was created
Date_Modified	timestamp with time zone	Date the entry was modified
Created_By	integer	User who created object
Modified_By	integer	User who last modified object
Destination_Host_Name	character varying(255)	Destination host name

C.1.62 EVT_DEST_TXNMY_SMRY_1_RPT_V

View summarizes event count by destination, taxonomy, severity and event time.

Column Name	Datatype	Comment
Destination_IP	integer	Destination IP address
Destination_Event_Asset_ID	bigint	Event asset identifier
Taxonomy_ID	bigint	Taxonomy identifier
Severity	integer	Event severity
CUST_ID	bigint	Customer identifier
Event_Time	timestamp with time zone	Event time
XDAS_Taxonomy_id	bigint	XDAS taxonomy identifier
Event_Count	integer	Event count
Date_Created	timestamp with time zone	Date the entry was created
Date_Modified	timestamp with time zone	Date the entry was modified
Created_By	integer	User who created object
Modified_By	integer	User who last modified object
Destination_Host_Name	character varying(255)	Destination host name

C.1.63 EVT_NAME_RPT_V

View references EVT_NAME table that stores event name information.

Column Name	Datatype	Comment
Event_Name_ID	bigint	Event name identifier
Event_Name	character varying(255)	Event name
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.64 EVT_PORT_SMRY_1

Column Name	Datatype	Comment
DEST_PORT	character varying(32)	Destination port
SEV	integer	Severity
CUST_ID	bigint	Customer identifier
EVT_TIME	timestamp with time zone	Event time
EVT_CNT	integer	Event count
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.65 EVT_PORT_SMRY_1_RPT_V

View summarizes event count by destination port, severity and event time.

Column Name	Datatype	Comment
Destination_Port	character varying(32)	Destination port
Severity	integer	Event severity
Cust_ID	bigint	Customer identifier
Event_Time	timestamp with time zone	Event time
Event_Count	integer	Event count
Date_Created	timestamp with time zone	Date the entry was created
Date_Modified	timestamp with time zone	Date the entry was modified
Created_By	integer	User who created object
Modified_By	integer	User who last modified object

C.1.66 EVT_PRTCL_RPT_V

View references EVT_PRTCL table that stores event protocol information.

Column Name	Datatype	Comment
Protocol_ID	bigint	Protocol identifier
Protocol_Name	character varying(255)	Protocol name
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.67 EVT_RSRC_RPT_V

View references EVT_RSRC table that stores event resource information.

Column Name	Datatype	Comment
Resource_ID	bigint	Resource identifier
CUST_ID	bigint	Customer identifier
Resource_Name	character varying(255)	Resource name
Sub_Resource_Name	character varying(255)	Subresource name
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.68 EVT_SEV_SMRY_1_RPT_V

View summarizes event count by severity and event time.

Column Name	Datatype	Comment
Severity	integer	Event severity
CUST_ID	bigint	Customer identifier
Event_Time	timestamp with time zone	Event time
Event_Count	integer	Event count
Date_Created	timestamp with time zone	Date the entry was created
Date_Modified	timestamp with time zone	Date the entry was modified
Created_By	integer	User who created object
Modified_By	integer	User who last modified object

C.1.69 EVT_SRC_COLLECTOR_RPT_V

Column Name	Datatype	Comment
EVT_SRC_COLLECTOR_ID	uuid	Event source collector identifier
SENTINEL_PLUGIN_ID	uuid	Sentine plugin identifier
EVT_SRC_MGR_ID	uuid	Event source manager identifier
EVT_SRC_COLLECTOR_NAME	character varying(255)	Event source collector name
STATE_IND	boolean	State indicator
EVT_SRC_COLLECTOR_PROPS	text	Event source collector prop
MAP_FILTER	text	Map filter
CREATED_BY	integer	Date the entry was created
MODIFIED_BY	integer	Date the entry was modified
DATE_CREATED	timestamp with time zone	User who created object
DATE_MODIFIED	timestamp with time zone	User who last modified object

C.1.70 EVT_SRC_GRP_RPT_V

Column Name	Datatype	Comment
EVT_SRC_GRP_ID	uuid	Event source group identifier
EVT_SRC_COLLECTOR_ID	uuid	Event source collector identifier
SENTINEL_PLUGIN_ID	uuid	Sentinel plugin identifier
EVT_SRC_SRVR_ID	uuid	Event source server identifier
EVT_SRC_GRP_NAME	character varying(255)	Event source group name
STATE_IND	boolean	State indicator
MAP_FILTER	text	Map filter
EVT_SRC_DEFAULT_CONFIG	text	Event source default configuration
CREATED_BY	integer	Date the entry was created
MODIFIED_BY	integer	Date the entry was modified
DATE_CREATED	timestamp with time zone	User who created object
DATE_MODIFIED	timestamp with time zone	User who last modified object

C.1.71 EVT_SRC_MGR_RPT_V

Column Name	Datatype	Comment
EVT_SRC_MGR_ID	uuid	Event source manager identifier
SENTINEL_ID	uuid	Sentinel identifier
SENTINEL_HOST_ID	uuid	Sentinel host identifier
EVT_SRC_MGR_NAME	character varying(255)	Event source manager name
STATE_IND	boolean	State indicator
EVT_SRC_MGR_CONFIG	text	Event source manager configu
CREATED_BY	integer	Date the entry was created
MODIFIED_BY	integer	Date the entry was modified
DATE_CREATED	timestamp with time zone	User who created object
DATE_MODIFIED	timestamp with time zone	User who last modified object

C.1.72 EVT_SRC_OFFSET_RPT_V

Column Name	Datatype	Comment
EVT_SRC_ID	uuid	Event source identifier
OFFSET_VAL	text	Offset value
OFFSET_TIMESTAMP	timestamp with time zone	Offset timestamp
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified

C.1.73 EVT_SRC_RPT_V

Column Name	Datatype	Comment
EVT_SRC_ID	uuid	Event source identifier
EVT_SRC_NAME	character varying(255)	Event source name
EVT_SRC_GRP_ID	uuid	Event source group identifier
STATE_IND	boolean	State indicator
MAP_FILTER	text	Map filter
EVT_SRC_CONFIG	text	Event source config
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified

C.1.74 EVT_SRC_SMRY_1_RPT_V

View contains event source and destination summary information.

Column Name	Datatype	Comment
Source_IP	integer	Source IP address
Source_Event_Asset_ID	bigint	Event asset identifier
Source_Port	character varying(32)	Source port
Source_User_ID	bigint	User identifier
Taxonomy _ID	bigint	Taxonomy identifier
Event_Name_ID	bigint	Event name identifier
Resource_ID	bigint	Resource identifier
Agent_ID	bigint	Collector identifier
Protocol _ID	bigint	Protocol identifier
Severity	integer	Event severity
CUST_ID	bigint	Customer identifier
Event_Time	timestamp with time zone	Event time
XDAS_Taxonomy_id	bigint	XDAS taxonomy id
Init_User_Identity	uuid	Initiator user identity
Event_Count	integer	Event count
Date_Created	timestamp with time zone	Date the entry was created
Date_Modified	timestamp with time zone	Date the entry was modified
Created_By	integer	User who created object
Modified_By	integer	User who last modified object
Source_Host_Name	character varying(255)	Source host name

C.1.75 EVT_SRC_SRVR_RPT_V

Column Name	Datatype	Comment
EVT_SRC_SRVR_ID	uuid	Event source server identifier
EVT_SRC_SRVR_NAME	character varying(255)	Event source server name
EVT_SRC_MGR_ID	uuid	Event source manager identifier
SENTINEL_PLUGIN_ID	uuid	Sentinel plugin identifier
STATE_IND	boolean	State indicator
EVT_SRC_SRVR_CONFIG	text	Event source server configuration
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified

C.1.76 EVT_TXNMY_RPT_V

View references EVT_TXNMY table that stores event taxonomy information.

Column Name	Datatype	Comment
Taxonomy _ID	bigint	Taxonomy identifier
Taxonomy _ Level _1	character varying(100)	Taxonomy level 1
Taxonomy _ Level _2	character varying(100)	Taxonomy level 2
Taxonomy _ Level _3	character varying(100)	Taxonomy level 3
Taxonomy _ Level _4	character varying(100)	Taxonomy level 4
Device_Category	character varying(255)
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.77 EVT_USR_RPT_V

View references EVT_USR table that stores event user information.

Column Name	Datatype	Comment
User_ID	bigint	User identifier
User_Name	character varying(255)	User name
User_Domain	character varying(255)
CUST_ID	bigint	Customer identifier
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.78 EVT_XDAS_TXNMY_RPT_V

Column Name	Datatype	Comment
XDAS_TXNMY_NAME	character varying(255)	XDAS taxonomy name
XDAS_OUTCOME_NAME	character varying(255)	XDAS outcome name
Xdas_Registry	integer	XDAS registry
Xdas_Provider	integer	XDAS provider
Xdas_Class	integer	XDAS class
Xdas_Identifier	integer	XDAS identifier
Xdas_Outcome	integer	XDAS outcome
Xdas_Detail	integer	XDAS detail
Xdas_Taxonomy_Id	bigint	XDAS taxonomy identifier
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.79 EXTERNAL_DATA_RPT_V

View references EXTERNAL_DATA table that stores external data.

Column Name	Datatype	Comment
EXTERNAL_DATA_ID	integer	External data identifier
SOURCE_NAME	character varying(50)	Source name
SOURCE_DATA_ID	character varying(255)	Source data identifier
EXTERNAL_DATA	text	External data
EXTERNAL_DATA_TYPE	character varying(10)	External data type
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.80 HIST_CORRELATED_EVENTS

Column Name	Datatype	Comment
PARENT_EVT_ID	uuid	Event Universal Unique Identifier (UUID) of parent event
CHILD_EVT_ID	uuid	Event Universal Unique Identifier (UUID) of child event
PARENT_EVT_TIME	timestamp with time zone	Parent event created time
CHILD_EVT_TIME	timestamp with time zone	Child event created time
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.81 HIST_CORRELATED_EVENTS_RPT_V (legacy view)

This view is provided for backward compatibility. New reports should use CORRELATED_EVENTS_RPT_V1.

C.1.82 HIST_EVENTS

Column Name	Datatype	Comment
EVT_ID	uuid	Event Universal Unique Identifier (UUID)
EVT_TIME	timestamp with time zone	Event time
CUST_ID	bigint	Customer identifier
SRC_ASSET_ID	bigint	Source Asset ID
DEST_ASSET_ID	bigint	Destination Asset ID
TXNMY_ID	bigint	Taxonomy ID
PRTCL_ID	bigint	Protocol ID
AGENT_ID	bigint	Collector Identifier
ARCH_ID	bigint
DEVICE_EVT_TIME	timestamp with time zone	Device Event Time
SENTINEL_PROCESS_TIME	timestamp with time zone	Sentinel Process Time
BEGIN_TIME	timestamp with time zone	Events begin time
END_TIME	timestamp with time zone	Events end time
REPEAT_CNT	integer	Events repeat count
DP_integer	integer
SP_integer	integer
RES	character varying(255)	Resolution
SRES	character varying(255)
SEV	integer	Severity
EVT	character varying(255)	Events
ET	character varying(255)
SIP	integer
SHN	character varying(255)
SP	character varying(32)
DIP	integer
DHN	character varying(255)
DP	character varying(32)
SUN	character varying(255)
DUN	character varying(255)
FN	character varying(1000)
VULN	integer	Vulnerability
CT1	character varying(255)
CT2	character varying(255)
CT3	integer
RT1	character varying(255)
RT2	character varying(255)
RT3	integer
CRIT	integer
MSG	character varying(4000)	Message
EI	character varying(1000)
INIT_USR_SYS_ID	character varying(255)
INIT_USR_IDENTITY_GUID	uuid
TRGT_USR_SYS_ID	character varying(255)
TRGT_USR_IDENTITY_GUID	uuid
EFFECTIVE_USR_NAME	character varying(255)
EFFECTIVE_USR_SYS_ID	character varying(255)
EFFECTIVE_USR_DOMAIN	character varying(255)
TRGT_TRUST_NAME	character varying(255)
TRGT_TRUST_SYS_ID	character varying(255)
TRGT_TRUST_DOMAIN	character varying(255)
OBSRVR_IP	integer
RPTR_IP	integer
OBSRVR_HOST_DOMAIN	character varying(255)
RPTR_HOST_DOMAIN	character varying(255)
OBSRVR_ASSET_ID	character varying(255)
RPTR_ASSET_ID	character varying(255)
INIT_SRVC_COMP	character varying(255)
TARGET_SRVC_COMP	character varying(255)
EVT_GRP_ID	character varying(255)
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object
RV01-RV10	integer
RV11-RV20	timestamp with time zone
RV21-RV25	uuid
RV26-RV38 RV40-RV49	character varying(255)
RV101-RV120	timestamp with time zone
RV121-RV130	uuid
RV131-RV140	integer
RV141-RV150	character varying(255)
RID01-RID20	bigint
CV01-CV10	integer
CV11-CV20	timestamp with time zone
CV21-CV29 CV35-CV100	character varying(255)
CV30-CV34	character varying(4000)
CV101-CV110 CV131-CV140	integer
CV111-CV120	timestamp with time zone
CV121-CV130	uuid
CV141-CV147	character varying(255)

C.1.83 HIST_EVENTS_RPT_V (legacy view)

This view is provided for backward compatibility. New reports should use EVENTS_RPT_V2.

C.1.84 IMAGES_RPT_V

View references IMAGES table that stores system overview image information.

Column Name	Datatype	Comment
NAME	character varying(128)	Image name
TYPE	character varying(64)	Image type
DATA	text	Image data
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.85 INCIDENTS_ASSETS_RPT_V

View references INCIDENTS_ASSETS table that stores information about the assets that makeup incidents created in the Sentinel Console.

Column Name	Datatype	Comment
INC_ID	integer	Incident identifier – sequence number
ASSET_ID	uuid	Asset Universal Unique Identifier (UUID)
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.86 INCIDENTS_EVENTS_RPT_V

View references INCIDENTS_EVENTS table that stores information about the events that makeup incidents created in the Sentinel Console.

Column Name	Datatype	Comment
INC_ID	integer	Incident identifier – sequence number
EVT_ID	uuid	Event Universal Unique Identifier (UUID)
EVT_TIME	timestamp with time zone	Event time
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.87 INCIDENTS_RPT_V

View references INCIDENTS table that stores information describing the details of incidents created in the Sentinel Console.

Column Name	Datatype	Comment
INC_ID	integer	Incident identifier – sequence number
NAME	character varying(255)	Incident name
INC_CAT	character varying(255)	Incident category
INC_DESC	character varying(4000)	Incident description
INC_PRIORITY	integer	Incident priority
INC_RES	character varying(4000)	Incident resolution
SEVERITY	integer	Incident severity
STT_ID	integer	Incident State ID
SEVERITY_RATING	character varying(32)	Average of all the event severities that comprise an incident.
VULNERABILITY_RATING	character varying(32)	Reserved for future use by Sentinel. Use of this field for any other purpose might result in data being overwritten by future functionality.
CRITICALITY_RATING	character varying(32)	Reserved for future use by Sentinel. Use of this field for any other purpose might result in data being overwritten by future functionality.
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.88 INCIDENTS_VULN_RPT_V

View references INCIDENTS_VULN table that stores information about the vulnerabilities that makeup incidents created in the Sentinel Console.

Column Name	Datatype	Comment
INC_ID	integer	Incident identifier – sequence number
VULN_ID	uuid	Vulnerability Universal Unique Identifier (UUID)
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.89 L_STAT_RPT_V

View references L_STAT table that stores statistical information.

Column Name	Datatype	Comment
RES_NAME	character varying(32)	Resource name
STATS_NAME	character varying(32)	Statistic name
STATS_VALUE	character varying(32)	Value of the statistic
OPEN_TOT_SECS	numeric(18,0)	Number of seconds since 1970.

C.1.90 LOGS_RPT_V

View references LOGS_RPT table that stores logging information.

Column Name	Datatype	Comment
LOG_ID	integer	Sequence number
TIME	timestamp with time zone	Date of Log
MODULE	character varying(64)	Module log is for
TEXT	character varying(4000)	Log text

C.1.91 MSSP_ASSOCIATIONS_V

View references MSSP_ASSOCIATIONS table that associates an integer key in one table to a uuid in another table.

Column Name	Datatype	Comment
TABLE1	character varying(64)	Table name 1
ID1	bigint	ID1
TABLE2	character varying(64)	Table name 2
ID2	uuid	ID2
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.92 NETWORK_IDENTITY_RPT_V

View references NETWORK_IDENTITY_LKUP table that stores asset network identity information.

Column Name	Datatype	Comment
NETWORK_IDENTITY_ID	bigint	Network identity code
NETWORK_IDENTITY_NAME	character varying(255)	Network identify name
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.93 ORGANIZATION_RPT_V

View references ORGANIZATION table that stores organization (asset) information.

Column Name	Datatype	Comment
ORGANIZATION_ID	uuid	Organization identifier
ORGANIZATION_NAME	character varying(100)	Organization name
CUST_ID	bigint	Customer identifier
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.94 PERSON_RPT_V

View references PERSION table that stores personal (asset) information.

Column Name	Datatype	Comment
PERSON_ID	uuid	Person identifier
FIRST_NAME	character varying(255)	First name
LAST_NAME	character varying(255)	Last name
CUST_ID	bigint	Customer identifier
PHONE_NUMBER	character varying(50)	Phone number
EMAIL_ADDRESS	character varying(255)	Email address
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.95 PHYSICAL_ASSET_RPT_V

View references PHYSICAL_ASSET table that stores physical asset information.

Column Name	Datatype	Comment
PHYSICAL_ASSET_ID	uuid	Physical asset identifier
CUST_ID	bigint	Customer identifier
LOCATION_ID	bigint	Location identifier
HOST_NAME	character varying(255)	Host name
IP_ADDRESS	integer	IP address
NETWORK_IDENTITY_ID	bigint	Network identity code
MAC_ADDRESS	character varying(100)	MAC address
RACK_NUMBER	character varying(50)	Rack number
ROOM_NAME	character varying(100)	Room name
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.96 PRODUCT_RPT_V

View references PRDT table that stores asset product information.

Column Name	Datatype	Comment
PRODUCT _ID	bigint	Product identifier
PRODUCT _NAME	character varying(255)	Product name
PRODUCT _VERSION	character varying(100)	Product version
VENDOR _ID	bigint	Vendor identifier
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.97 ROLE_RPT_V

View references ROLE_LKUP table that stores user role (asset) information.

Column Name	Datatype	Comment
ROLE_CODE	character varying(5)	Role code
ROLE_NAME	character varying(255)	Role name
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.98 RPT_LABELS_RPT_V

This view contains localized report labels for reports in non-English languages.

Column Name	Datatype	Comment
RPT_NAME	character varying(100)	Report name
LABEL_1 – LABEL_35	character varying(2000)	Translated report labels

C.1.99 SENSITIVITY_RPT_V

View references SENSITIVITY_LKUP table that stores asset sensitivity information.

Column Name	Datatype	Comment
SENSITIVITY_ID	bigint	Asset sensitivity code
SENSITIVITY_NAME	character varying(50)	Asset sensitivity name
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.100 SENTINEL_HOST_RPT_V

Column Name	Datatype	Comment
SENTINEL_HOST_ID	uuid	Sentinel host identifier
SENTINEL_ID	uuid	Sentinel identifier
SENTINEL_HOST_NAME	character varying(255)	Sentinel host name
HOST_NAME	character varying(255)	Host name
IP_ADDR	character varying(255)	IP address
HOST_OS	character varying(255)	Host operating system
HOST_OS_VERSION	character varying(255)	Host operating system version
MODIFIED_BY	integer	User who last modified object
CREATED_BY	integer	User who created object
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified

C.1.101 SENTINEL_PLUGIN_RPT_V

Column Name	Datatype	Comment
SENTINEL_PLUGIN_ID	uuid	Sentinel plugin identifier
SENTINEL_PLUGIN_NAME	character varying(255)	Sentinel plugin name
SENTINEL_PLUGIN_TYPE	character varying(255)	Sentinel plugin type
FILE_NAME	character varying(512)	File name
CONTENT_PKG	text	Content package
FILE_HASH	character varying(255)	File hash code
AUX_FILE_NAME	character varying(512)	Auxiliary file name
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified

C.1.102 SENTINEL_RPT_V

Column Name	Datatype	Comment
SENTINEL_ID	uuid	Sentinel identifier
SENTINEL_NAME	character varying(255)	Sentinel name
ONLINE_IND	boolean	Online indicator
STATE_IND	boolean	State indicator
SENTINEL_CONFIG	text	Sentinel configuration
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified

C.1.103 STATES_RPT_V

View references STATES table that stores definitions of states defined by applications or cotext.

Column Name	Datatype	Comment
STT_ID	integer	State ID – sequence number
COtext	character varying(64)	Cotext of the state. That is case, incident, user.
NAME	character varying(64)	Name of the state.
TERMINAL_FLAG	character varying(1)	Indicates if state of incident is resolved.
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
MODIFIED_BY	integer	User who last modified object
CREATED_BY	integer	User who created object

C.1.104 UNASSIGNED_INCIDENTS_RPT_V

View references CASES and INCIDENTS tables to report on unassigned cases.

Name	Datatype	Comment
INC_ID	integer	Incident identifier – sequence number
NAME	character varying(255)	Short, unique user name used as a login
SEVERITY	integer	Incident severity
STT_ID	integer	State ID. Status is either active or inactive.
SEVERITY_RATING	character varying(32)	Average of all the event severities that comprise an incident.
VULNERABILITY_RATING	character varying(32)	Vulnerability rating
CRITICALITY_RATING	character varying(32)	Criticality rating
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object
INC_DESC	character varying(4000)	Incident description
INC_CAT	character varying(255)	Incident category
INC_PRIORITY	integer	Incident priority
INC_RES	character varying(4000)	Incident resolution

C.1.105 USERS_RPT_V

View references USERS table that lists all users of the application. The users will also be created as database users to accommodate 3rd party reporting tools.

Column Name	Datatype	Comment
USR_ID	integer	User identifier – Sequence number
NAME	character varying(64)	Short, unique user name used as a login
CNT_ID	integer	Contact ID – Sequence number
STT_ID	integer	State ID. Status is either active or inactive.
DESCRIPTION	character varying(512)	Comments
PERMISSIONS	character varying(4000)	Permissions currently assigned to the Sentinel user
FILTER	character varying(128)	Current security filter assigned to the Sentinel user
UPPER_NAME	character varying(64)	User name in upper case
DOMAIN_AUTH_IND	boolean	Domain authentication indication
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.106 USR_ACCOUNT_RPT_V

Column Name	Datatype	Comment
ACCOUNT_ID	bigint	Account identifier
USER_DOMAIN	character varying(255)	User domain
CUST_ID	bigint	Customer identifier
BEGIN_EFFECTIVE_DATE	timestamp with time zone	Begin effective date
END_EFFECTIVE_DATE	timestamp with time zone	End effective date
CURRENT_F	boolean	Current flag
USER_STATUS	character varying(50)	User status
IDENTITY_GUID	uuid	Identity identifier
SOURCE_USER_ID	character varying(100)	User ID on source system
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.107 USR_IDENTITY_EXT_ATTR_RPT_V

Column Name	Datatype	Comment
IDENTITY_GUID	uuid	Identity identifier
ATTRIBUTE_NAME	character varying(255)	Attribute name
ATTRIBUTE_VALUE	character varying(1024)	Attribute value

C.1.108 USR_IDENTITY_RPT_V

Column Name	Datatype	Comment
IDENTITY_GUID	uuid	Identity identifier
DN	character varying(255)	Distinguished name
CUST_ID	bigint	Customer identifier
SRC_IDENTITY_ID	character varying(100)	Source identity identifier
WFID	character varying(100)	Workforce identifier
FIRST_NAME	character varying(255)	First name
LAST_NAME	character varying(255)	Last name
FULL_NAME	character varying(255)	Full name
JOB_TITLE	character varying(255)	Job title
DEPARTMENT_NAME	character varying(100)	Department name
OFFICE_LOC_CD	character varying(100)	Office location code
PRIMARY_EMAIL	character varying(255)	Primary email address
PRIMARY_PHONE	character varying(100)	Primary phone number
VAULT_NAME	character varying(100)	Identity vault name
MGR_GUID	uuid	Manager identity identifier
PHOTO	text	Photo
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.109 VENDOR_RPT_V

View references VNDR table that stores information about asset product vendors.

Column Name	Datatype	Comment
VENDOR_ID	bigint	Vendor identifier
VENDOR_NAME	character varying(255)	Vendor name
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.110 VULN_CALC_SEVERITY_RPT_V

View references VULN_RSRC and VULN to calculate eSecurity vulnerability severity rating base on current vulnerabilities.

Column Name	Datatype	Comment
RSRC_ID	uuid
IP	character varying(32)	IP
HOST_NAME	character varying(255)	Host name
CRITICALITY	integer	Asset criticality code
ASSIGNED_VULN_SEVERITY	integer
VULN_COUNT	integer	Vulnerability Count
CALC_SEVERITY	numeric(14,2)

C.1.111 VULN_CODE_RPT_V

View references VULN_CODE table that stores industry assigned vulnerability codes such as Mitre's CVEs and CANs.

Column Name	Datatype	Comment
VULN_CODE_ID	uuid
VULN_ID	uuid	Vulnerability identifier
VULN_CODE_TYPE	character varying(64)	Vulnerability code type
VULN_CODE_VALUE	character varying(255)	Vulnerability code value
URL	character varying(512)	Web URL
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.112 VULN_INFO_RPT_V

View references VULN_INFO table that stores additional information reported during a scan.

Column Name	Datatype	Comment
VULN_INFO_ID	uuid
VULN_ID	uuid	Vulnerability identifier
VULN_INFO_TYPE	character varying(36)
VULN_INFO_VALUE	character varying(2000)
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.113 VULN_RPT_V

View references VULN table that stores information of scanned system. Each scanner will have its own entry for each system.

Column Name	Datatype	Comment
VULN_ID	uuid	Vulnerability identifier
RSRC_ID	uuid	Resource identifier
PORT_NAME	character varying(64)	Port Name
PORT_NUMBER	integer	Port Number
NETWORK_PROTOCOL	integer	Network Protocol
APPLICATION_PROTOCOL	character varying(64)	Application Protocol
ASSIGNED_VULN_SEVERITY	integer
COMPUTED_VULN_SEVERITY	integer
VULN_DESCRIPTION	text
VULN_SOLUTION	text
VULN_SUMMARY	character varying(1000)
BEGIN_EFFECTIVE_DATE	timestamp with time zone	Date from which the entry is valid
END_EFFECTIVE_DATE	timestamp with time zone	Date until which the entry is valid
DETECTED_OS	character varying(64)
DETECTED_OS_VERSION	character varying(64)
SCANNED_APP	character varying(64)
SCANNED_APP_VERSION	character varying(64)
VULN_USER_NAME	character varying(64)
VULN_USER_DOMAIN	character varying(64)
VULN_TAXONOMY	character varying(1000)
SCANNER_CLASSIFICATION	character varying(255)
VULN_NAME	character varying(300)
VULN_MODULE	character varying(64)
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.114 VULN_RSRC_RPT_V

View references VULN_RSRC table that stores each resource scanned for a particular scan.

Column Name	Datatype	Comment
RSRC_ID	uuid
SCANNER_ID	uuid	Scanner identifier
IP	character varying(32)	IP Address
HOST_NAME	character varying(255)	Host name
LOCATION	character varying(128)	Location
DEPARTMENT	character varying(128)	Department
BUSINESS_SYSTEM	character varying(128)	Business System
OPERATIONAL_ENVIRONMENT	character varying(64)	Operational environment
CRITICALITY	integer	Criticality
REGULATION	character varying(128)	Regulation
REGULATION_RATING	character varying(64)	Regulation rating
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.115 VULN_RSRC_SCAN_RPT_V

View references VULN_RSRC_SCAN table that stores each resource scanned for a particular scan.

Column Name	Datatype	Comment
RSRC_ID	uuid
SCAN_ID	uuid
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.116 VULN_SCAN_RPT_V

View references table that stores information pertaining to scans.

Column Name	Datatype	Comment
SCAN_ID	uuid	Vulnerability scan identifier
SCANNER_ID	uuid	Vulnerability scanner identifier
SCAN_TYPE	character varying(10)	Vulnerability scan type
SCAN_START_DATE	timestamp with time zone	Scan start date
SCAN_END_DATE	timestamp with time zone	Scan start date
CONSOLIDATION_SERVER	character varying(64)	Consolidation server
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.117 VULN_SCAN_VULN_RPT_V

View references VULN_SCAN_VULN table that stores vulnerabilities detected during scans.

Column Name	Datatype	Comment
SCAN_ID	uuid
VULN_ID	uuid
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.118 VULN_SCANNER_RPT_V

View references VULN_SCANNER table that stores information about vulnerability scanners.

Column Name	Datatype	Comment
SCANNER_ID	uuid
PRODUCT_NAME	character varying(100)	Product Name
PRODUCT_VERSION	character varying(64)	Product Version
SCANNER_TYPE	character varying(64)	Vulnerability Scanner Type
VENDOR	character varying(100)	Vendor
SCANNER_INSTANCE	character varying(64)	Scanner Instance
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.119 WORKFLOW_DEF_RPT_V

Column Name	Datatype	Comment
PKG_NAME	character varying(255)	Package name
PKG_DATA	text	Package data
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1.120 WORKFLOW_INFO_RPT_V

Column Name	Datatype	Comment
INFO_ID	bigint	Info identifier
PROCESS_DEF_ID	character varying(100)	Process definition identifier
PROCESS_INSTANCE_ID	character varying(150)	Process instance identifier
DATE_CREATED	timestamp with time zone	Date the entry was created
DATE_MODIFIED	timestamp with time zone	Date the entry was modified
CREATED_BY	integer	User who created object
MODIFIED_BY	integer	User who last modified object

C.1 Views