Event Attributes in Security Analytics and Logging

Event Attribute Descriptions

The event attribute descriptions used by CDO are largely the same as what is reported by Firepower Device Manager (FDM) and Adaptive Security Device Manager (ASDM).

• For a complete description of FDM-managed device event attributes, see Cisco Firepower Threat Defense Syslog Messages.

• For a complete description of Adaptive Security Appliance (ASA) event attributes, see Cisco ASA Series Syslog Messages.

Some ASA syslog events are "parsed" and others have additional attributes which you can use when filtering the contents of the Event Logging table using attribute:value pairs. See these additional topics for other important attributes of syslog events:

• Parsed ASA Syslog Events

• EventGroup and EventGroupDefinition Attributes for Some Syslog Messages

• Event Name Attributes for Syslog Events

• Time Attributes