Event Details
Operating System->TPAM (draft)->User activity->Password: Retrieve Password
Password: Retrieve Password
Password was retrieved.


Module: Privileged Password Manager
 Sample:
Feb 21 12:27:25 10.30.44.209 PAR[7200]: UserName: tpamsm Operation: Retrieve Password ObjectType: Password Target: dimalinux/yk65 Role: Requestor Failed? 0
Log Type: Generic Syslog
 Uniquely Identified By:
OS Type: Any
Filtering RegExp: ^(.{15}) ([-[:alnum:]_.]+) ([^():]+)(\([^[]+\)){0,1}(\[[0-9]+\]){0,1}: (UserName: (.*) Operation: (.*) ObjectType: (.*) Target: (.*) Role: (.*[^])[]* Failed\? (.*))
Field Matching
FieldDescriptionStored inSample Value
DateTime Date/Time of event origination in GMT format. DateTime Feb 21 12:27:25
Source Name of system type origination the event. "TPAMCONSOLE" TPAMCONSOLE
Computer Name / IP address of the host that originally generated the message. Computer 10.30.44.209
Description The entire unparsed event message. RegExpGroup7
UserName TPAM user account initiating event. - tpamsm
Operation Type of action. - Retrieve Password
ObjectType Type of the object on which action is taken. - Password
Target Name of the object on which action is taken. - dimalinux/yksm
Role Permission type - Requestor
Failed Result of execution (0 - true, 1 - false) - 0
Comments
You must be logged in to comment