Fortinet black logo

APPEVENT

APPEVENT

INCIDENT

Log Field Name

Description

Data Type

Length

action

string

32

affected_assets

string

128

attachment

string

512

attachment_type

string

64

attach_source

string

32

attach_source_id

string

64

connector_name

string

64

date

string

16

desc

string

64

devid

string

16

end_time

string

128

error

string

512

eventtype

string

64

incident_assigned_analyst

string

64

incident_id

string

64

incident_other_attrs

string

64

incident_severity

string

64

level

enum

11

logid

string

16

msg

string

4096

note

string

256

report_source

string

32

report_source_id

string

64

start_time

string

128

status

string

36

subtype

string

16

task_id

string

64

task_name

string

64

time

string

16

trigger_name

string

64

trigger_type

string

64

type

enum

16

user

string

64

user_from

string

64

user_type

string

64

vd

string

64

INCIDENT Log Messages

The following table describes the log message IDs and messages of the INCIDENT log.

Message ID

Message

Severity

100001

New_Incident_Create

Information

100002

Incident_Update

Information

100003

Incident_Delete

Information

100004

Incident_Attachment_Update

Information

100005

Incident_Attachment_Add

Information

100006

Incident_Attachment_Delete

Information

110001

New_Incident_Create_Error

Error

110002

Incident_Update_Error

Error

110003

Incident_Delete_Error

Error

110004

Incident_Attachment_Update_Error

Error

110005

Incident_Attachment_Add_Error

Error

110006

Incident_Attachment_Delete_Error

Error

PLAYBOOK

Log Field Name

Description

Data Type

Length

action

string

32

affected_assets

string

128

connector_name

string

64

data_src

string

64

data_src_id

string

64

data_src_type

string

64

date

string

16

desc

string

64

devid

string

16

end_time

string

128

error

string

512

eventtype

string

64

event_id

string

64

job_id

string

24

level

enum

11

logid

string

16

msg

string

4096

playbook_id

string

64

playbook_name

string

128

start_time

string

128

status

string

36

subtype

string

16

task_id

string

64

task_name

string

64

time

string

16

trigger_name

string

64

trigger_type

string

64

type

enum

16

user

string

64

user_from

string

64

user_type

string

64

vd

string

64

PLAYBOOK Log Messages

The following table describes the log message IDs and messages of the PLAYBOOK log.

Message ID

Message

Severity

110020

Playbook_Triggered_by_User

Information

110021

Playbook_Created_by_User

Information

110022

Playbook_Updated_by_User

Information

REPORT

Log Field Name

Description

Data Type

Length

action

string

32

date

string

16

desc

string

64

devid

string

16

end_time

string

128

error

string

512

eventtype

string

64

level

enum

11

logid

string

16

msg

string

4096

start_time

string

128

status

string

36

subtype

string

16

time

string

16

type

enum

16

user

string

64

user_from

string

64

user_type

string

64

vd

string

64

REPORT Log Messages

The following table describes the log message IDs and messages of the REPORT log.

Message ID

Message

Severity

210001

Report_Run_Failure

Information

APPEVENT

INCIDENT

Log Field Name

Description

Data Type

Length

action

string

32

affected_assets

string

128

attachment

string

512

attachment_type

string

64

attach_source

string

32

attach_source_id

string

64

connector_name

string

64

date

string

16

desc

string

64

devid

string

16

end_time

string

128

error

string

512

eventtype

string

64

incident_assigned_analyst

string

64

incident_id

string

64

incident_other_attrs

string

64

incident_severity

string

64

level

enum

11

logid

string

16

msg

string

4096

note

string

256

report_source

string

32

report_source_id

string

64

start_time

string

128

status

string

36

subtype

string

16

task_id

string

64

task_name

string

64

time

string

16

trigger_name

string

64

trigger_type

string

64

type

enum

16

user

string

64

user_from

string

64

user_type

string

64

vd

string

64

INCIDENT Log Messages

The following table describes the log message IDs and messages of the INCIDENT log.

Message ID

Message

Severity

100001

New_Incident_Create

Information

100002

Incident_Update

Information

100003

Incident_Delete

Information

100004

Incident_Attachment_Update

Information

100005

Incident_Attachment_Add

Information

100006

Incident_Attachment_Delete

Information

110001

New_Incident_Create_Error

Error

110002

Incident_Update_Error

Error

110003

Incident_Delete_Error

Error

110004

Incident_Attachment_Update_Error

Error

110005

Incident_Attachment_Add_Error

Error

110006

Incident_Attachment_Delete_Error

Error

PLAYBOOK

Log Field Name

Description

Data Type

Length

action

string

32

affected_assets

string

128

connector_name

string

64

data_src

string

64

data_src_id

string

64

data_src_type

string

64

date

string

16

desc

string

64

devid

string

16

end_time

string

128

error

string

512

eventtype

string

64

event_id

string

64

job_id

string

24

level

enum

11

logid

string

16

msg

string

4096

playbook_id

string

64

playbook_name

string

128

start_time

string

128

status

string

36

subtype

string

16

task_id

string

64

task_name

string

64

time

string

16

trigger_name

string

64

trigger_type

string

64

type

enum

16

user

string

64

user_from

string

64

user_type

string

64

vd

string

64

PLAYBOOK Log Messages

The following table describes the log message IDs and messages of the PLAYBOOK log.

Message ID

Message

Severity

110020

Playbook_Triggered_by_User

Information

110021

Playbook_Created_by_User

Information

110022

Playbook_Updated_by_User

Information

REPORT

Log Field Name

Description

Data Type

Length

action

string

32

date

string

16

desc

string

64

devid

string

16

end_time

string

128

error

string

512

eventtype

string

64

level

enum

11

logid

string

16

msg

string

4096

start_time

string

128

status

string

36

subtype

string

16

time

string

16

type

enum

16

user

string

64

user_from

string

64

user_type

string

64

vd

string

64

REPORT Log Messages

The following table describes the log message IDs and messages of the REPORT log.

Message ID

Message

Severity

210001

Report_Run_Failure

Information