Activity Log Event Fdr/Entity
| Field Type | Type | Availability | Description |
|---|---|---|---|
| @id | |||
| @ingesttimestamp | |||
| @rawstring | |||
| @timestamp | |||
| @timestamp.nanos | |||
| @timezone | |||
| category | Category of the event, such as Alert, Request, IngestFeed, Fdr, Query, Action, and ScheduledSearch | ||
| dataspace | Repository or view name | ||
| dataspaceId | Dataspace ID | ||
| fdrFeedId | FDR feed ID | ||
| fdrFeedName | FDR feed name | ||
| #category | |||
| #repo | |||
| #severity | |||
| message | Message of the alert or event | ||
| orgId | Organization ID | ||
| severity | Severity of the event | ||
| streamId | Stream ID | ||
| subCategory | Subcategory of the event | ||
| timestamp | Timestamp in milliseconds of the event |