Parsers and Generated Fields

Tag Fields Created by Parser microsoft-windows-dhcp-server

  • #Cps.version

  • #Vendor

  • #ecs.version

  • #event.dataset

  • #event.kind

  • #event.module

  • #event.outcome

  • #observer.type

Fields Identified by Parser microsoft-windows-dhcp-server
Source FieldCPS FieldDescriptionMapping
IPv4 DNS registration error codeVendor.DnsRegError error.code
IPv6 error codeVendor.Error_Code error.code
Host nameVendor.Host_Name host.hostname
Event identifierVendor.ID event.id
Source IP address for IPv4 logsVendor.IP_Address source.ip
Source IP address for IPv6 logsVendor.IPv6_Address source.ip
MAC address formatted with dashesVendor.Mac_Address source.mac
Alternative username field when User_Name is not availableVendor.UserClass_Ascii user.name
Username when availableVendor.User_Name user.name
Tag Fields Created by Parser windows-dhcp-server-csv

  • #Cps.version

  • #Vendor

  • #ecs.version

  • #event.dataset

  • #event.kind

  • #event.module

  • #event.outcome

  • #observer.type