Activity Log Event SystemPrivilege/ChangeSystemPermission
Event for user permissions change
This activity type records operations for the following features:
Field Type | Type | Availability | Description |
---|---|---|---|
@id | Unique identifier for the event. Can be used to refer to and re-find specific events. | ||
@ingesttimestamp | Timestamp when the event was ingested to the repository | ||
logId | Log ID | ||
message | Message of the alert or event | ||
orgId | Organization ID | ||
@rawstring | Original string of the event | ||
#repo | Repository tag of the event indicating where event is stored | ||
subCategory | Subcategory of the event | ||
@timestamp | Timestamp in milliseconds of the event | ||
@timestamp.nanos | Extended precision of timestamp below millisecond | ||
@timezone | Timezone the event originated in, if known. This is often set when the event's timestamp is parsed. | ||
userId | User ID | ||
userName | User name |