For each logging event, the PlateSpin Orchestrate Server passes a free form text log message and log event metadata to the Sentinel Event Source Server. The following table shows how the data are mapped:
Table C-1 PlateSpin Orchestrate Logged Data Mapped to Sentinel Event Source Server Fields
Sentinel Event Field Name |
PlateSpin Orchestrate Data Represented |
---|---|
|
A free-form text log message. |
|
The PlateSpin Orchestrate grid name. |
|
The IP address of the PlateSpin Orchestrate Server. |
|
The originating facility of the PlateSpin Orchestrate event. |
|
A name formatted as gridname: taxonomy_key. For more information, see Section C.8, Event Classification and Taxonomy Keys. |
|
The product is always PlateSpin Orchestrate for convenient event filtering. |
The name of the PlateSpin Orchestrate user. Used for user-oriented events. |
For some events, the PlateSpin Orchestrate Sentinel Collector passes some structured data related to the log event. When available, this data appears in the
Sentinel Event field, which is a list of key/value pairs delimited by semicolons. Some keys are always present in , but others appear only when relevant. The following table lists these keys:Table C-2 PlateSpin Orchestrate Key/Value Pairs Displayed in the
Field of the Sentinel Event Source Server