Fortinet black logo

APPEVENT

APPEVENT

INCIDENT

Log Field Name

Description

Data Type

Length

action

string

32

adom

string

64

affected_assets

string

128

attachment

string

512

attachment_type

string

64

attach_source

string

32

attach_source_id

string

64

connector_name

string

64

date

string

16

desc

string

64

devid

string

16

end_time

string

128

error

string

512

eventtype

string

64

incident_assigned_analyst

string

64

incident_id

string

64

incident_other_attrs

string

64

incident_severity

string

64

level

enum

11

logid

string

16

msg

string

4096

note

string

256

report_source

string

32

report_source_id

string

64

start_time

string

128

status

string

36

subtype

string

16

task_id

string

64

task_name

string

64

time

string

16

trigger_name

string

64

trigger_type

string

64

type

enum

16

tz

string

8

user

string

64

user_from

string

64

user_type

string

64

vd

string

64

INCIDENT Log Messages

The following table describes the log message IDs and messages of the INCIDENT log.

Message ID

Message

Severity

100001

New_Incident_Create

Information

110001

New_Incident_Create_Error

Error

100002

Incident_Update

Information

110002

Incident_Update_Error

Error

100003

Incident_Delete

Information

110003

Incident_Delete_Error

Error

100004

Incident_Attachment_Update

Information

110004

Incident_Attachment_Update_Error

Error

100005

Incident_Attachment_Add

Information

110005

Incident_Attachment_Add_Error

Error

100006

Incident_Attachment_Delete

Information

110006

Incident_Attachment_Delete_Error

Error

LOGDEV

Log Field Name

Description

Data Type

Length

action

string

32

adom

string

64

date

string

16

desc

string

64

devid

string

16

eventtype

string

64

level

enum

11

logdev_id

string

24

logdev_last_logging

int64

logdev_name

string

128

logdev_offline_duration

int64

logid

string

16

msg

string

4096

subtype

string

16

time

string

16

type

enum

16

tz

string

8

vd

string

64

LOGDEV Log Messages

The following table describes the log message IDs and messages of the LOGDEV log.

Message ID

Message

Severity

220001

Logdev_Nolog_Alert

Information

220002

Logdev_Online_Alert

Information

PLAYBOOK

Log Field Name

Description

Data Type

Length

action

string

32

adom

string

64

affected_assets

string

128

connector_name

string

64

data_src

string

64

data_src_id

string

64

data_src_type

string

64

date

string

16

desc

string

64

devid

string

16

end_time

string

128

error

string

512

eventtype

string

64

event_id

string

64

job_id

string

24

level

enum

11

logid

string

16

msg

string

4096

playbook_id

string

64

playbook_name

string

128

start_time

string

128

status

string

36

subtype

string

16

task_id

string

64

task_name

string

64

time

string

16

trigger_name

string

64

trigger_type

string

64

type

enum

16

tz

string

8

user

string

64

user_from

string

64

user_type

string

64

vd

string

64

PLAYBOOK Log Messages

The following table describes the log message IDs and messages of the PLAYBOOK log.

Message ID

Message

Severity

110020

Playbook_Triggered_by_User

Information

110021

Playbook_Created_by_User

Information

110022

Playbook_Updated_by_User

Information

REPORT

Log Field Name

Description

Data Type

Length

action

string

32

adom

string

64

date

string

16

desc

string

64

devid

string

16

end_time

string

128

error

string

512

eventtype

string

64

level

enum

11

logid

string

16

msg

string

4096

start_time

string

128

status

string

36

subtype

string

16

time

string

16

type

enum

16

tz

string

8

user

string

64

user_from

string

64

user_type

string

64

vd

string

64

REPORT Log Messages

The following table describes the log message IDs and messages of the REPORT log.

Message ID

Message

Severity

210001

Report_Run_Failure

Information

APPEVENT

INCIDENT

Log Field Name

Description

Data Type

Length

action

string

32

adom

string

64

affected_assets

string

128

attachment

string

512

attachment_type

string

64

attach_source

string

32

attach_source_id

string

64

connector_name

string

64

date

string

16

desc

string

64

devid

string

16

end_time

string

128

error

string

512

eventtype

string

64

incident_assigned_analyst

string

64

incident_id

string

64

incident_other_attrs

string

64

incident_severity

string

64

level

enum

11

logid

string

16

msg

string

4096

note

string

256

report_source

string

32

report_source_id

string

64

start_time

string

128

status

string

36

subtype

string

16

task_id

string

64

task_name

string

64

time

string

16

trigger_name

string

64

trigger_type

string

64

type

enum

16

tz

string

8

user

string

64

user_from

string

64

user_type

string

64

vd

string

64

INCIDENT Log Messages

The following table describes the log message IDs and messages of the INCIDENT log.

Message ID

Message

Severity

100001

New_Incident_Create

Information

110001

New_Incident_Create_Error

Error

100002

Incident_Update

Information

110002

Incident_Update_Error

Error

100003

Incident_Delete

Information

110003

Incident_Delete_Error

Error

100004

Incident_Attachment_Update

Information

110004

Incident_Attachment_Update_Error

Error

100005

Incident_Attachment_Add

Information

110005

Incident_Attachment_Add_Error

Error

100006

Incident_Attachment_Delete

Information

110006

Incident_Attachment_Delete_Error

Error

LOGDEV

Log Field Name

Description

Data Type

Length

action

string

32

adom

string

64

date

string

16

desc

string

64

devid

string

16

eventtype

string

64

level

enum

11

logdev_id

string

24

logdev_last_logging

int64

logdev_name

string

128

logdev_offline_duration

int64

logid

string

16

msg

string

4096

subtype

string

16

time

string

16

type

enum

16

tz

string

8

vd

string

64

LOGDEV Log Messages

The following table describes the log message IDs and messages of the LOGDEV log.

Message ID

Message

Severity

220001

Logdev_Nolog_Alert

Information

220002

Logdev_Online_Alert

Information

PLAYBOOK

Log Field Name

Description

Data Type

Length

action

string

32

adom

string

64

affected_assets

string

128

connector_name

string

64

data_src

string

64

data_src_id

string

64

data_src_type

string

64

date

string

16

desc

string

64

devid

string

16

end_time

string

128

error

string

512

eventtype

string

64

event_id

string

64

job_id

string

24

level

enum

11

logid

string

16

msg

string

4096

playbook_id

string

64

playbook_name

string

128

start_time

string

128

status

string

36

subtype

string

16

task_id

string

64

task_name

string

64

time

string

16

trigger_name

string

64

trigger_type

string

64

type

enum

16

tz

string

8

user

string

64

user_from

string

64

user_type

string

64

vd

string

64

PLAYBOOK Log Messages

The following table describes the log message IDs and messages of the PLAYBOOK log.

Message ID

Message

Severity

110020

Playbook_Triggered_by_User

Information

110021

Playbook_Created_by_User

Information

110022

Playbook_Updated_by_User

Information

REPORT

Log Field Name

Description

Data Type

Length

action

string

32

adom

string

64

date

string

16

desc

string

64

devid

string

16

end_time

string

128

error

string

512

eventtype

string

64

level

enum

11

logid

string

16

msg

string

4096

start_time

string

128

status

string

36

subtype

string

16

time

string

16

type

enum

16

tz

string

8

user

string

64

user_from

string

64

user_type

string

64

vd

string

64

REPORT Log Messages

The following table describes the log message IDs and messages of the REPORT log.

Message ID

Message

Severity

210001

Report_Run_Failure

Information