Parsers and Generated Fields
Tag Fields Created by Parser microsoft-windows-dhcp-client
#Cps.version
#Vendor
#ecs.version
#event.dataset
#event.kind
#event.module
#event.outcome
#observer.type
Fields Identified by Parser microsoft-windows-dhcp-client
| Source Field | CPS Field |
|---|---|
| Vendor.EventRecordId | event.id |
| Vendor.ProcessID | process.pid |
| Vendor.UserID | user.id |
Tag Fields Created by Parser windows-dhcp-client
#Cps.version
#Vendor
#ecs.version
#event.dataset
#event.kind
#event.module
#event.outcome
#observer.type
Fields Identified by Parser windows-dhcp-client
| Source Field | CPS Field |
|---|---|
| Vendor.EventRecordId | event.id |
| Vendor.ProcessID | process.pid |
| Vendor.UserID | user.id |