Centrify UNIX/Linux Audit Event Log Information

The following table provides definitions for each field type and name with their associated field value for the previous example.

UNIX/Linux Audit Event Log Information
Field Type Field Name Sample Field Value

Syslog header fields

Timestamp

Apr 4 21:04:15

Host Name

engcen6

Process Name

adclient

Process ID

1749

Log Level

INFO

Centrify audit event header fields

Event Type

AUDIT_TRAIL

Product

Centrify Suite

Category

Centrify sshd

Product Version

1.0

Event ID

100

Event Name

SSHD granted

Severity

5

Centrify audit event common fields

user

dwirth(type:ad,dwirth@CENTRIFY.VMS)

pid

7456

utc

1459784055479

centrifyEventID

27100

DAInst

AuditingInstallation

DASessID

c72252aa-e616-44ff-a5f6-d3f53f09bb67

status

GRANTED

service

ssh-connection

Centrify audit event-specific fields

tty

/dev/pts/0

authMechanism

keyboard-interactive

client

192.168.81.11

sshRights

shell

command

(none)