Change log for CYBERARK_PRIVILEGE_CLOUD
| Date | Changes |
|---|---|
| 2024-08-21 | Enhancement:
- Mapped "host" to "principal.hostname" and "principal.asset.hostname". |
| 2024-03-17 | Enhancement:
- Mapped "device_version" to "metadata.product_version". - Mapped "device_event_class_id" and "event_name" to "metadata.product_event_type". - Mapped "msg" to "metadata.description". - If "shost" is IP then mapped "shost" to "principal.ip" else mapped it to "principal.hostname". - If "dvc" to "principal.hostname". - Mapped "dhost" to "target.hostname". - Mapped "duser" to "target.user.user_display_name". - Mapped "suser" to "principal.user.user_display_name". - Mapped "act" to "security_result.action_details". - Mapped "severity" to "security_result.severity". - Mapped "cn1", "cn1Label", "cn2", "cn2Label", "cs1", "cs1Label", "cs2", "cs2Label", "cs3", "cs3Label", "cs4", "cs4Label", "cs5", "cs5Label", and "fname" to "additional.fields". |
| 2023-11-24 | - Newly created parser.
|