TIBCO LogLogic Reports for Sarbanes-Oxley and COBIT 4.1
The following table lists the reports included in the LogLogic® Compliance Suite - Sarbanes-Oxley Edition and COBIT 4.1.
Serial Number | TIBCO LogLogic Report | Description |
---|---|---|
1 | COBIT: Accepted VPN Connections - RADIUS | Displays all users connected to the internal network through the RADIUS VPN. |
2 | COBIT: Account Activities on UNIX Servers | Displays all accounts activities on UNIX servers to ensure authorized and appropriate access. |
3 | COBIT: Account Activities on Windows Servers | Displays all accounts activities on Windows servers to ensure authorized and appropriate access. |
4 | COBIT: Accounts Changed on NetApp Filer | Displays all accounts changed on NetApp Filer to ensure authorized and appropriate access. |
5 | COBIT: Accounts Changed on Sidewinder | Displays all accounts changed on Sidewinder to ensure authorized and appropriate access. |
6 | COBIT: Accounts Changed on TIBCO ActiveMatrix Administrator | Displays all accounts changed on TIBCO ActiveMatrix Administrator to ensure authorized and appropriate access. |
7 | COBIT: Accounts Changed on TIBCO Administrator | Displays all accounts changed on TIBCO Administrator to ensure authorized and appropriate access. |
8 | COBIT: Accounts Changed on UNIX Servers | Displays all accounts changed on UNIX servers to ensure authorized and appropriate access. |
9 | COBIT: Accounts Changed on Windows Servers | Displays all accounts changed on Windows servers to ensure authorized and appropriate access. |
10 | COBIT: Accounts Created on NetApp Filer | Displays all accounts created on NetApp Filer to ensure authorized and appropriate access. |
11 | COBIT: Accounts Created on NetApp Filer Audit | Displays all accounts created on NetApp Filer Audit to ensure authorized and appropriate access. |
12 | COBIT: Accounts Created on Sidewinder | Displays all accounts created on Sidewinder to ensure authorized and appropriate access. |
13 | COBIT: Accounts Created on Symantec Endpoint Protection | Displays all accounts created on Symantec Endpoint Protection to ensure authorized and appropriate access. |
14 | COBIT: Accounts Created on TIBCO ActiveMatrix Administrator | Displays all accounts created on TIBCO ActiveMatrix Administrator to ensure authorized and appropriate access. |
15 | COBIT: Accounts Created on TIBCO Administrator | Displays all accounts created on TIBCO Administrator to ensure authorized and appropriate access. |
16 | COBIT: Accounts Created on UNIX Servers | Displays all accounts created on UNIX servers to ensure authorized and appropriate access. |
17 | COBIT: Accounts Created on Windows Servers | Displays all accounts created on Windows servers to ensure authorized and appropriate access. |
18 | COBIT: Accounts Deleted on NetApp Filer | Displays all accounts deleted on NetApp Filer to ensure authorized and appropriate access. |
19 | COBIT: Accounts Deleted on NetApp Filer Audit | Displays all accounts deleted on NetApp Filer Audit to ensure authorized and appropriate access. |
20 | COBIT: Accounts Deleted on Sidewinder | Displays all accounts deleted on Sidewinder to ensure authorized and appropriate access. |
21 | COBIT: Accounts Deleted on Symantec Endpoint Protection | Displays all accounts deleted on Symantec Endpoint Protection to ensure authorized and appropriate access. |
22 | COBIT: Accounts Deleted on TIBCO ActiveMatrix Administrator | Displays all accounts deleted on TIBCO ActiveMatrix Administrator to ensure authorized and appropriate access. |
23 | COBIT: Accounts Deleted on TIBCO Administrator | Displays all accounts deleted on TIBCO Administrator to ensure authorized and appropriate access. |
24 | COBIT: Accounts Deleted on UNIX Servers | Displays all accounts deleted on UNIX servers to ensure authorized and appropriate access. |
25 | COBIT: Accounts Deleted on Windows Servers | Displays all accounts deleted on Windows servers to ensure authorized and appropriate access. |
26 | COBIT: Active Connections for Cisco ASA | Displays all currently active firewall connections for Cisco ASA. |
27 | COBIT: Active Connections for Cisco FWSM | Displays all currently active firewall connections for Cisco FWSM. |
28 | COBIT: Active Connections for Cisco PIX | Displays all currently active firewall connections for Cisco PIX. |
29 | COBIT: Active Directory System Changes | Displays changes made within Active Directory. |
30 | COBIT: Active VPN Connections for Cisco VPN Concentrators | Displays all currently active VPN connections for Cisco VPN Concentrators. |
31 | COBIT: Active VPN Connections for Nortel ivity | Displays all currently active VPN connections for Nortel Contivity VPN devices. |
32 | COBIT: Active VPN Connections for RADIUS | Displays all currently active VPN connections for RADIUS Acct Client. |
33 | COBIT: Administrator Logins on Windows Servers | Displays all logins with the administrator account on Windows servers. |
34 | COBIT: Allowed URLs by Source IPs | Displays successful access to URLs by source IP addresses. |
35 | COBIT: Allowed URLs by Source IPs - F5 BIG-IP TMOS | Displays successful access to URLs by source IP addresses on F5 BIG-IP TMOS. |
36 | COBIT: Allowed URLs by Source IPs - Microsoft IIS | Displays successful access to URLs by source IP addresses on Microsoft IIS. |
37 | COBIT: Allowed URLs by Source Users | Displays successful access to URLs by source users. |
38 | COBIT: Allowed URLs by Source Users - F5 BIG-IP TMOS | Displays successful access to URLs by source users on F5 BIG-IP TMOS. |
39 | COBIT: Allowed URLs by Source Users - Microsoft IIS | Displays successful access to URLs by source users on Microsoft IIS. |
40 | COBIT: Applications Under Attack | Displays all applications under attack as well as the attack signatures. |
41 | COBIT: Applications Under Attack - Cisco IOS | Displays all applications under attack as well as the attack signatures by Cisco IOS. |
42 | COBIT: Applications Under Attack - FireEye MPS | Displays all applications under attack as well as the attack signatures by FireEye MPS. |
43 | COBIT: Applications Under Attack - ISS SiteProtector | Displays all applications under attack as well as the attack signatures by ISS SiteProtector. |
44 | COBIT: Applications Under Attack - SiteProtector | Displays all applications under attack as well as the attack signatures by SiteProtector. |
45 | COBIT: Applications Under Attack - Sourcefire Defense Center | Displays all applications under attack as well as the attack signatures by Sourcefire Defense Center. |
46 | COBIT: Attackers by Service | Displays all attack source IP address and service ports. |
47 | COBIT: Attackers by Service - Cisco IOS | Displays all attack source IP address and service ports by Cisco IOS. |
48 | COBIT: Attackers by Service - ISS SiteProtector | Displays all attack source IP address and service ports by ISS SiteProtector. |
49 | COBIT: Attackers by Service - FireEye MPS | Displays all attack source IP address and service ports by FireEye MPS. |
50 | COBIT: Attackers by Service - SiteProtector | Displays all attack source IP address and service ports by SiteProtector. |
51 | COBIT: Attackers by Service - Sourcefire Defense Center | Displays all attack source IP address and service ports by Sourcefire Defense Center. |
52 | COBIT: Attackers by Signature | Displays all attack source IP address and signatures. |
53 | COBIT: Attackers by Signature - Cisco IOS | Displays all attack source IP address and signatures by Cisco IOS. |
54 | COBIT: Attackers by Signature - FireEye MPS | Displays all attack source IP address and signatures by FireEye MPS. |
55 | COBIT: Attackers by Signature - ISS SiteProtector | Displays all attack source IP address and signatures by ISS SiteProtector. |
56 | COBIT: Attackers by Signature - SiteProtector | Displays all attack source IP address and signatures by SiteProtector. |
57 | COBIT: Attackers by Signature - Sourcefire Defense Center | Displays all attack source IP address and signatures by Sourcefire Defense Center. |
58 | COBIT: Attacks Detected | Displays all IDS attacks detected against servers and applications. |
59 | COBIT: Attacks Detected - Cisco IOS | Displays all IDS attacks detected against servers and applications by Cisco IOS. |
60 | COBIT: Attacks Detected - HIPS | Displays all IPS attacks detected against servers and applications. |
61 | COBIT: Attacks Detected - ISS SiteProtector | Displays all IDS attacks detected against servers and applications by ISS SiteProtector. |
62 | COBIT: Attacks Detected - SiteProtector | Displays all IDS attacks detected against servers and applications by SiteProtector. |
63 | COBIT: Attacks Detected - Sourcefire Defense Center | Displays all IDS attacks detected against servers and applications by Sourcefire Defense Center. |
64 | COBIT: Bandwidth Usage by User | Displays users who are using the most bandwidth. |
65 | COBIT: Blocked URLs by Source IPs | Displays URLs that have been blocked by source IP addresses. |
66 | COBIT: Blocked URLs by Source IPs - F5 BIG-IP TMOS | Displays URLs that have been blocked by source IP addresses on F5 BIG-IP TMOS. |
67 | COBIT: Blocked URLs by Source IPs - Microsoft IIS | Displays URLs that have been blocked by source IP addresses on Microsoft IIS. |
68 | COBIT: Blocked URLs by Source Users | Displays URLs that have been blocked by source users. |
69 | COBIT: Blocked URLs by Source Users - F5 BIG-IP TMOS | Displays URLs that have been blocked by source users on F5 BIG-IP TMOS. |
70 | COBIT: Blocked URLs by Source Users - Microsoft IIS | Displays URLs that have been blocked by source users on Microsoft IIS. |
71 | COBIT: Check Point Configuration Changes | Displays all Check Point audit events related to configuration changes. |
72 | COBIT: Check Point Management Station Login | Displays all login events to the Check Point management station. |
73 | COBIT: Check Point Objects Created | Displays all Check Point audit events related to object creation in policies. |
74 | COBIT: Check Point Objects Deleted | Displays all Check Point audit events related to policy objects deleted. |
75 | COBIT: Check Point Objects Modified | Displays all Check Point audit events related to policy objects modified. |
76 | COBIT: Check Point SIC Revoked | Displays all Check Point audit events related to the security certificate being revoked. |
77 | COBIT: Cisco ESA: Attacks by Event ID | Displays Cisco ESA attacks by Event ID. |
78 | COBIT: Cisco ESA: Attacks Detected | Displays attacks detected by Cisco ESA. |
79 | COBIT: Cisco ESA: Attacks by Threat Name | Displays Cisco ESA attacks by threat name. |
80 | COBIT: Cisco ESA: Scans | Displays scans using Cisco ESA. |
81 | COBIT: Cisco ESA: Updated | Displays updates to Cisco ESA. |
82 | COBIT: Cisco ISE, ACS Accounts Created | Displays all accounts created on Cisco ISE and Cisco SecureACS to ensure authorized and appropriate access. |
83 | COBIT: Cisco ISE, ACS Accounts Removed | Displays all accounts removed on Cisco ISE and Cisco SecureACS to ensure authorized and appropriate access. |
84 | COBIT: Cisco ISE, ACS Configuration Changes | Displays Cisco ISE and Cisco SecureACS configuration changes. |
85 | COBIT: Cisco ISE, ACS Password Changes | Displays all password change activities on Cisco ISE and Cisco SecureACS to ensure authorized and appropriate access. |
86 | COBIT: Cisco Line Protocol Status Changes | Displays all Cisco line protocol up and down events. |
87 | COBIT: Cisco Link Status Changes | Displays all Cisco link up and down events. |
88 | COBIT: Cisco Peer Reset/Reload | Displays all Cisco Peer reset and reload events. |
89 | COBIT: Cisco Peer Supervisor Status Changes | Displays all Cisco Peer Supervisor status changes. |
90 | COBIT: Cisco PIX, ASA, FWSM Failover Disabled | Displays all logs related to disabling Cisco PIX, ASA, and FWSM failover capability. |
91 | COBIT: Cisco PIX, ASA, FWSM Failover Performed | Displays all logs related to performing a Cisco PIX, ASA, and FWSM failover. |
92 | COBIT: Cisco PIX, ASA, FWSM Policy Changed | Displays all configuration changes made to the Cisco PIX, ASA, and FWSM devices. |
93 | COBIT: Cisco Routers and Switches Restart | Displays all Cisco routers and switches restart activities to detect unusual activities. |
94 | COBIT: Cisco Switch Policy Changes | Displays all configuration changes to the Cisco router and switch policies. |
95 | COBIT: Creation and Deletion of System Level Objects: AIX Audit | Displays AIX audit events related to creation and deletion of system-level objects. |
96 | COBIT: Creation and Deletion of System Level Objects: DB2 Database | Displays DB2 database events related to creation and deletion of system-level objects. |
97 | COBIT: Creation and Deletion of System Level Objects: HP-UX Audit | Displays HP-UX audit events related to creation and deletion of system-level objects. |
98 | COBIT: Creation and Deletion of System Level Objects: Windows | Displays all Windows events related to creation and deletion of system-level objects. |
99 | COBIT: Creation and Deletion of System Level Objects: Oracle | Displays Oracle database events related to creation and deletion of system-level objects. |
100 | COBIT: Creation and Deletion of System Level Objects: Solaris BSM | Displays Solaris BSM events related to creation and deletion of system-level objects. |
101 | COBIT: Creation and Deletion of System Level Objects: SQL Server | Displays Microsoft SQL Server events related to creation and deletion of system-level objects. |
102 | COBIT: DB2 Database Backup Failed | Displays all IBM DB2 Database Server backup failures. |
103 | COBIT: DB2 Database Configuration Changes | Displays DB2 database configuration changes. |
104 | COBIT: DB2 Database Failed Logins | Displays all failed login attempts to review any access violations or unusual activity. |
105 | COBIT: DB2 Database Successful Logins | Displays successful DB2 database logins. |
106 | COBIT: DB2 Database Restore Failed | Displays all IBM DB2 Database restore failure events. |
107 | COBIT: DB2 Database Stop and Start Events | Displays DB2 database events related to starting and stopping the database. |
108 | COBIT: DB2 Database User Additions and Deletions | Displays IBM DB2 Database events related to creation and deletion of database users. |
109 | COBIT: Decru DataFort Cryptographic Key Events | Displays events related to cryptographic key handling. |
110 | COBIT: Decru DataFort Zeroization Events | Displays events related to Decru DataFort zeroization. |
111 | COBIT: Denied Connections by IP Addresses - Check Point | Displays remote IP addresses with the most denied connections from Check Point. |
112 | COBIT: Denied Connections by IP Addresses - Cisco ASA | Displays remote IP addresses with the most denied connections from Cisco ASA. |
113 | COBIT: Denied Connections by IP Addresses - Cisco FWSM | Displays remote IP addresses with the most denied connections from Cisco FWSM. |
114 | COBIT: Denied Connections by IP Addresses - Cisco PIX | Displays remote IP addresses with the most denied connections from Cisco PIX. |
115 | COBIT: Denied Connections by IP Addresses - Nortel | Displays remote IP addresses with the most denied connections from Nortel. |
116 | COBIT: Denied Connections - Cisco IOS | Displays all connections that have been denied by the Cisco IOS devices. |
117 | COBIT: Denied Connections - Cisco NXOS | Displays all connections that have been denied by the Cisco NXOS devices. |
118 | COBIT: Denied Connections - Cisco Router | Displays all connections that have been denied by the Cisco Router devices. |
119 | COBIT: Denied Connections - VMware vShield | Displays all connections that have been denied by the VMware vShield devices. |
120 | COBIT: Denied Connections - Sidewinder | Displays all connections that have been denied by the Sidewinder devices. |
121 | COBIT: Denied Inbound Connections - Cisco ASA | Displays all inbound connections that have been denied by the Cisco ASA devices. |
122 | COBIT: Denied Inbound Connections - Cisco FWSM | Displays all inbound connections that have been denied by the Cisco FWSM devices. |
123 | COBIT: Denied Inbound Connections - Cisco PIX | Displays all inbound connections that have been denied by the Cisco PIX devices. |
124 | COBIT: Denied Inbound Connections - Check Point | Displays all inbound connections that have been denied by the Check Point devices. |
125 | COBIT: Denied Inbound Connections - Juniper Firewall | Displays all inbound connections that have been denied by the Juniper Firewalls. |
126 | COBIT: Denied Outbound Connections - Cisco ASA | Displays all outbound connections that have been denied by the Cisco ASA. |
127 | COBIT: Denied Outbound Connections - Cisco FWSM | Displays all outbound connections that have been denied by the Cisco FWSM. |
128 | COBIT: Denied Outbound Connections - Check Point | Displays all outbound connections that have been denied by the Check Point. |
129 | COBIT: Denied Outbound Connections - Cisco PIX | Displays all outbound connections that have been denied by the Cisco PIX. |
130 | COBIT: Denied Connections - F5 BIG-IP TMOS | Displays all connections that have been denied by the F5 BIG-IP TMOS devices. |
131 | COBIT: Denied Outbound Connections - Juniper Firewall | Displays all outbound connections that have been denied by the Juniper Firewall. |
132 | COBIT: Denied VPN Connections - RADIUS | Displays all users denied access to the internal network by the RADIUS VPN. |
133 | COBIT: Domain activities on Symantec Endpoint Protection | Displays all domain activities on Symantec Endpoint Protection. |
134 | COBIT: DHCP Granted/Renewed Activities on Microsoft DHCP | Displays all DHCP Granted/Renewed activities on Microsoft DHCP Server. |
135 | COBIT: DHCP Granted/Renewed Activities on VMware vShield | Displays all DHCP Granted/Renewed activities on VMware vShield Edge. |
136 | COBIT: DNS Server Error | Displays all events when DNS Server has errors. |
137 | COBIT: Domains Sending the Most Email - Exchange 2000/2003 | Displays the top domains sending email. |
138 | COBIT: Email Recipients Receiving the Most Emails by Count - Exchange 2000/2003 | Displays the email recipients who receiving the most emails by count. |
139 | COBIT: Email Recipients Receiving the Most Emails by Count - Exchange 2007/10 | Displays the email recipients who receiving the most emails by count. |
140 | COBIT: Email Recipients Receiving the Most Emails by Size - Exchange 2000/2003 | Displays the email recipients who received the most emails by mail size. |
141 | COBIT: Email Senders Sending the Most Emails by Count - Exchange 2000/2003 | Displays the email senders who sent the most emails by count. |
142 | COBIT: Email Senders Sending the Most Emails by Count - Exchange 2007/10 | Displays the email senders who sent the most emails by count. |
143 | COBIT: Email Senders Sending the Most Emails by Size - Exchange 2000/2003 | Displays the email senders who sent the most emails by mail size. |
144 | COBIT: Email Senders Sending the Most Emails by Size - Exchange 2007/10 | Displays the email senders who sent the most emails by mail size. |
145 | COBIT: Email Source IP Sending To Most Recipients | Displays IP addresses that are sending to the most recipients using Exchange 2007/10. |
146 | COBIT: Escalated Privilege Activities on Servers | Displays all privilege escalation activities performed on servers to ensure appropriate access. |
147 | COBIT: ESX Accounts Activities | Displays all accounts activities on VMware ESX servers to ensure authorized and appropriate access. |
148 | COBIT: ESX Accounts Created | Displays all accounts created on VMware ESX servers to ensure authorized and appropriate access. |
149 | COBIT: ESX Accounts Deleted | Displays all accounts deleted on VMware ESX servers to ensure authorized and appropriate access. |
150 | COBIT: ESX Failed Logins | Failed VMware ESX logins for known user. |
151 | COBIT: ESX Group Activities | Displays all group activities on VMware ESX servers to ensure authorized and appropriate access. |
152 | COBIT: ESX Kernel log daemon terminating | Displays all VMware ESX Kernel log daemon terminating. |
153 | COBIT: ESX Kernel logging Stop | Displays all VMware ESX Kernel logging stops. |
154 | COBIT: ESX Logins Failed Unknown User | Failed VMware ESX logins for unknown user. |
155 | COBIT: ESX Logins Succeeded | Displays successful logins to VMware ESX to ensure only authorized personnel have access. |
156 | COBIT: ESX Syslogd Restart | Displays all VMware ESX syslogd restarts. |
157 | COBIT: F5 BIG-IP TMOS Login Failed | Displays all F5 BIG-IP TMOS login events which have failed. |
158 | COBIT: F5 BIG-IP TMOS Login Successful | Displays all F5 BIG-IP TMOS login events which have succeeded. |
159 | COBIT: F5 BIG-IP TMOS Password Changes | Displays all password change activities on F5 BIG-IP TMOS to ensure authorized and appropriate access. |
160 | COBIT: F5 BIG-IP TMOS Restarted | Displays all events when the F5 BIG-IP TMOS has been restarted. |
161 | COBIT: Failed Logins | Displays all failed login attempts to review any access violations or unusual activity. |
162 | COBIT: Failed Windows Events Summary | Displays summary of all failed access-related Windows events. |
163 | COBIT: Files Accessed on NetApp Filer Audit | Displays all files accessed on NetApp Filer Audit to ensure appropriate access. |
164 | COBIT: Files Accessed on Servers | Displays all files accessed on servers to ensure appropriate access. |
165 | COBIT: Files Accessed through Juniper SSL VPN (Secure Access) | Displays all files accessed through Juniper SSL VPN (Secure Access). |
166 | COBIT: Files Accessed through PANOS | Displays all files accessed through Palo Alto Networks. |
167 | COBIT: Files Downloaded via Proxy | Displays all proxy-based downloads ensure authorized and appropriate access. |
168 | COBIT: Files Downloaded via Proxy - Cisco WSA | Displays all proxy-based downloads to ensure authorized and appropriate access on Cisco WSA. |
169 | COBIT: Files Downloaded via Proxy - Blue Coat Proxy | Displays all proxy-based downloads to ensure authorized and appropriate access on Blue Coat Proxy. |
170 | COBIT: Files Downloaded via Proxy - Microsoft IIS | Displays all proxy-based downloads to ensure authorized and appropriate access on Microsoft IIS. |
171 | COBIT: Files Downloaded via the Web | Displays all web-based downloads ensure authorized and appropriate access. |
172 | COBIT: Files Downloaded via the Web - F5 BIG-IP TMOS | Displays all web-based downloads ensure authorized and appropriate access on F5 BIG-IP TMOS. |
173 | COBIT: Files Downloaded via the Web - Microsoft IIS | Displays all web-based downloads ensure authorized and appropriate access on Microsoft IIS. |
174 | COBIT: Files Uploaded via Proxy | Displays all proxy-based uploads to ensure only authorized data can be uploaded. |
175 | COBIT: Files Uploaded via Proxy - Blue Coat Proxy | Displays all proxy-based uploads to ensure only authorized data can be uploaded on Blue Coat Proxy. |
176 | COBIT: Files Uploaded via Proxy - Cisco WSA | Displays all proxy-based uploads to ensure only authorized data can be uploaded on Cisco WSA. |
177 | COBIT: Files Uploaded via Proxy - Microsoft IIS | Displays all proxy-based uploads to ensure only authorized data can be uploaded on Microsoft IIS. |
178 | COBIT: Files Uploaded via the Web | Displays all web-based uploads to ensure only authorized data can be uploaded. |
179 | COBIT: Files Uploaded via the Web - F5 BIG-IP TMOS | Displays all web-based uploads to ensure only authorized data can be uploaded on F5 BIG-IP TMOS. |
180 | COBIT: Files Uploaded via the Web - Microsoft IIS | Displays all web-based uploads to ensure only authorized data can be uploaded on Microsoft IIS. |
181 | COBIT: FireEye MPS: Attacks Detected | Displays attacks detected by FireEye MPS. |
182 | COBIT: FireEye MPS: Attacks by Event ID | Displays FireEye MPS attacks by Event ID. |
183 | COBIT: FireEye MPS: Attacks by Threat Name | Displays FireEye MPS attacks by threat name. |
184 | COBIT: FortiOS: Attacks by Event ID | Displays FortiOS attacks by Event ID. |
185 | COBIT: FortiOS: Attacks by Threat Name | Displays FortiOS attacks by threat name. |
186 | COBIT: FortiOS: Attacks Detected | Displays attacks detected by FortiOS. |
187 | COBIT: FortiOS DLP Attacks Detected | Displays all DLP attacks detected by FortiOS. |
188 | COBIT: Group Activities on NetApp Filer Audit | Displays all group activities on NetApp Filer Audit to ensure authorized and appropriate access. |
189 | COBIT: Group Activities on Symantec Endpoint Protection | Displays all group activities on Symantec Endpoint Protection to ensure authorized and appropriate access. |
190 | COBIT: Group Activities on TIBCO ActiveMatrix Administrator | Displays all group activities on TIBCO ActiveMatrix Administrator to ensure authorized and appropriate access. |
191 | COBIT: Group Activities on UNIX Servers | Displays all group activities on UNIX servers to ensure authorized and appropriate access. |
192 | COBIT: Group Activities on Windows Servers | Displays all group activities on Windows servers to ensure authorized and appropriate access. |
193 | COBIT: Groups Created on NetApp Filer Audit | Displays all groups created on NetApp Filer Audit to ensure authorized and appropriate access. |
194 | COBIT: Groups Created on TIBCO ActiveMatrix Administrator | Displays all groups created on TIBCO ActiveMatrix Administrator to ensure authorized and appropriate access. |
195 | COBIT: Groups Created on UNIX Servers | Displays all groups created on UNIX servers to ensure authorized and appropriate access. |
196 | COBIT: Groups Created on Windows Servers | Displays all groups created on Windows servers to ensure authorized and appropriate access. |
197 | COBIT: Groups Deleted on NetApp Filer Audit | Displays all groups deleted on NetApp Filer Audit to ensure authorized and appropriate access. |
198 | COBIT: Groups Deleted on TIBCO ActiveMatrix Administrator | Displays all groups deleted on TIBCO ActiveMatrix Administrator to ensure authorized and appropriate access. |
199 | COBIT: Groups Deleted on UNIX Servers | Displays all groups deleted on UNIX servers to ensure authorized and appropriate access. |
200 | COBIT: Groups Deleted on Windows Servers | Displays all groups deleted on Windows servers to ensure authorized and appropriate access. |
201 | COBIT: Guardium SQL Guard Audit Configuration Changes | Displays all configuration changes on the Guardium SQL Guard Audit database. |
202 | COBIT: Guardium SQL Guard Audit Data Access | Displays all select statements made on Guardium SQL Audit Server. |
203 | COBIT: Guardium SQL Guard Audit Logins | Displays all login attempts to the Guardium SQL Server Audit database. |
204 | COBIT: Guardium SQL Guard Audit Startup or Shutdown | Displays all startup and shutdown events on Guardium SQL Audit Server. |
205 | COBIT: Guardium SQL Guard Configuration Changes | Displays all configuration changes on the Guardium SQL Guard database. |
206 | COBIT: Guardium SQL Guard Data Access | Displays all select statements made on Guardium SQL Server. |
207 | COBIT: Guardium SQL Guard Logins | Displays all login attempts to the Guardium SQL Server database. |
208 | COBIT: Guardium SQL Guard Startup or Shutdown | Displays all startup and shutdown events on Guardium SQL Server. |
209 | COBIT: HP NonStop Audit Configuration Changes | Displays all audit configuration changes on HP NonStop. |
210 | COBIT: HP NonStop Audit Login Failed | Displays all HP NonStop Audit login events which have failed. |
211 | COBIT: HP NonStop Audit Login Successful | Displays all HP NonStop Audit login events which have succeeded. |
212 | COBIT: HP NonStop Audit Object Access | Displays HP NonStop Audit events related to object access. |
213 | COBIT: HP NonStop Audit Object Changes | Displays HP NonStop Audit events related to object changes. |
214 | COBIT: HP NonStop Audit Permissions Changed | Displays all permission modification activities on HP NonStop Audit to ensure authorized access. |
215 | COBIT: Files Accessed through Pulse Connect Secure | Displays all files accessed through Pulse Connect Secure. |
216 | COBIT: i5/OS Access Control List Modifications | Displays i5/OS events related to access control list modification. |
217 | COBIT: i5/OS Audit Configuration Changes | Displays all audit configuration changes on i5/OS. |
218 | COBIT: i5/OS DST Password Reset | Displays i5/OS events related to the reset of the DST (Dedicated Service Tools) password. |
219 | COBIT: i5/OS Internet Security Management Events | Displays i5/OS events related to Internet Security Management (IPSec/VPN). |
220 | COBIT: i5/OS Key Ring File Events | Displays i5/OS key ring file events (cryptographic key management). |
221 | COBIT: i5/OS Network Authentication Events | Displays i5/OS network authentication events. |
222 | COBIT: i5/OS Object Access | Displays i5/OS events related to object access. |
223 | COBIT: i5/OS Object Creation and Deletion | Displays i5/OS events related to object creation and deletion. |
224 | COBIT: i5/OS Restore Events | Displays i5/OS events related to object, program, and profile restoration. |
225 | COBIT: i5/OS Server Security User Information Actions | Displays i5/OS events related to server security user information actions. |
226 | COBIT: i5/OS System Management Changes | Displays i5/OS events related to system management changes. |
227 | COBIT: i5/OS User Profile Creation, Modification, or Restoration | Displays i5/OS events related to user profile creation, modification, or restoration. |
228 | COBIT: Juniper Firewall Escalated Privilege | Displays events related to users having escalated privileges in the Juniper Firewall. |
229 | COBIT: Juniper Firewall Policy Changed | Displays all configuration changes to the Juniper Firewall policies. |
230 | COBIT: Juniper Firewall Reset Accepted | Displays events that indicate the Juniper Firewall has been reset to its factory default state. |
231 | COBIT: Juniper Firewall Reset Imminent | Displays events that indicate the Juniper Firewall will be reset to its factory default state. |
232 | COBIT: Juniper Firewall Restarted | Displays all Juniper Firewall restart events. |
233 | COBIT: Juniper Firewall VPN Tunnel Status Change | Displays events when the Juniper Firewall VPN Tunnel is setup or taken down. |
234 | COBIT: Juniper SSL VPN Successful Logins | Displays successful connections through the Juniper SSL VPN. |
235 | COBIT: Juniper SSL VPN (Secure Access) Policy Changed | Displays all configuration changes to the Juniper SSL VPN (Secure Access) policies. |
236 | COBIT: Juniper SSL VPN (Secure Access) Successful Logins | Displays all successfull logins through the Juniper SSL VPN (Secure Access). |
237 | COBIT: Last Activities Performed by Administrators | Displays the latest activities performed by administrators and root users to ensure appropriate access. |
238 | COBIT: Last Activities Performed by All Users | Displays the latest activities performed by all users to ensure appropriate access. |
239 | COBIT: Logins by Authentication Type | Displays all logins categorized by the authentication type. |
240 | COBIT: LogLogic DSM Configuration Changes | Displays all configuration changes on the LogLogic DSM database. |
241 | COBIT: LogLogic DSM Data Access | Displays all select statements made on LogLogic DSM database. |
242 | COBIT: LogLogic DSM Logins | Displays all login attempts to the LogLogic DSM database. |
243 | COBIT: LogLogic DSM Startup or Shutdown | Displays all startup and shutdown events on LogLogic DSM database. |
244 | COBIT: LogLogic File Retrieval Errors | Displays all errors while retrieving log files from devices, servers and applications. |
245 | COBIT: LogLogic Management Center Account Activities | Displays all accounts activities on LogLogic management center to ensure authorized and appropriate access. |
246 | COBIT: LogLogic Management Center Backup Activities | Displays all backup activities on LogLogic management center. |
247 | COBIT: LogLogic Management Center Login | Displays all login events to the LogLogic management center. |
248 | COBIT: LogLogic Management Center Password Changes | Displays all password change activities on LogLogic management center to ensure authorized and appropriate access. |
249 | COBIT: LogLogic Management Center Restore Activities | Displays all restore activities on LogLogic management center. |
250 | COBIT: LogLogic Management Center Upgrade Success | Displays all successful events related to the system's upgrade. |
251 | COBIT: LogLogic Message Routing Errors | Displays all log forwarding errors on the LogLogic appliance to ensure all logs are archived properly. |
252 | COBIT: LogLogic Universal Collector Configuration Changes | Displays LogLogic universal collector configuration changes. |
253 | COBIT: McAfee AntiVirus: Attacks by
Event ID |
Displays McAfee AntiVirus attacks by Event ID. |
254 | COBIT: McAfee AntiVirus: Attacks by Threat Name | Displays McAfee AntiVirus attacks by threat name. |
255 | COBIT: McAfee AntiVirus: Attacks Detected | Displays attacks detected by McAfee AntiVirus. |
256 | COBIT: Microsoft Operations Manager - Failed Windows Events | Displays summary of all failed access-related Windows events. |
257 | COBIT: Microsoft Operations Manager - Windows Accounts Activities | Displays all accounts activities on Windows servers to ensure authorized and appropriate access. |
258 | COBIT: Microsoft Operations Manager - Windows Accounts Changed | Displays all accounts changed on Windows servers to ensure authorized and appropriate access. |
259 | COBIT: Microsoft Operations Manager - Windows Accounts Created | Displays all accounts created on Windows servers to ensure authorized and appropriate access. |
260 | COBIT: Microsoft Operations Manager - Windows Accounts Enabled | Displays all accounts enabled on Windows servers to ensure authorized and appropriate access. |
261 | COBIT: Microsoft Operations Manager - Windows Events by Users | Displays a summary of access-related Windows events by source and target users. |
262 | COBIT: Microsoft Operations Manager - Windows Events Summary | Displays a summary of access-related Windows events by count. |
263 | COBIT: Microsoft Operations Manager - Windows Password Changes | Displays all password change activities on Windows servers to ensure authorized and appropriate access. |
264 | COBIT: Microsoft Operations Manager - Windows Permissions Modified | Displays all permission modification activities on Windows servers to ensure authorized access. |
265 | COBIT: Microsoft Operations Manager - Windows Policies Modified | Displays all policy modification activities on Windows servers to ensure authorized and appropriate access. |
266 | COBIT: Microsoft Operations Manager - Windows Servers Restarted | Displays all Windows server restart activities to detect unusual activities. |
267 | COBIT: Microsoft Sharepoint Content Deleted | Displays all events when content has been deleted from Microsoft Sharepoint. |
268 | COBIT: Microsoft Sharepoint Content Updates | Displays all events when content is updated within Microsoft Sharepoint. |
269 | COBIT: Microsoft Sharepoint Permissions Changed | Displays all user/group permission events to Microsoft Sharepoint. |
270 | COBIT: Microsoft Sharepoint Policy Add, Remove, or Modify | Displays all events when a Microsoft Sharepoint policy is added, removed, or modified. |
271 | COBIT: Microsoft SQL Server Backup Failed | Displays all Microsoft SQL Server backup failures. |
272 | COBIT: Microsoft SQL Server Configuration Changes | Displays Microsoft SQL database configuration changes. |
273 | COBIT: Microsoft SQL Server Data Access | Displays data access events on Microsoft SQL Server databases. |
274 | COBIT: Microsoft SQL Server Database Failed Logins | Displays failed Microsoft SQL Server database logins. |
275 | COBIT: Microsoft SQL Server Database Successful Logins | Displays successful Microsoft SQL Server database logins. |
276 | COBIT: Microsoft SQL Server Database Permission Events | Displays events related to Microsoft SQL Server database permission modifications. |
277 | COBIT: Microsoft SQL Server Database User Additions and Deletions | Displays Microsoft SQL Server events related to creation and deletion of database users. |
278 | COBIT: Microsoft SQL Server Password Changes | Displays password changes for Microsoft SQL Server database accounts. |
279 | COBIT: Microsoft SQL Server Restore Failed | Displays all Microsoft SQL Server restore failure events. |
280 | COBIT: Microsoft SQL Server Schema Corruption | Displays all schema corruption events on Microsoft SQL Server databases. |
281 | COBIT: Microsoft SQL Server Shutdown by Reason | Displays all Microsoft SQL Server shutdown events by reason. |
282 | COBIT: Most Active Email Senders - Exchange 2000/2003 | Displays the most active email senders based on activity. |
283 | COBIT: Most Active Ports Through Firewall - Check Point | Displays the most active ports used through the Check Point firewall. |
284 | COBIT: Most Active Ports Through Firewall - Cisco ASA | Displays the most active ports used through the Cisco ASA firewall. |
285 | COBIT: Most Active Ports Through Firewall - Cisco FWSM | Displays the most active ports used through the Cisco FWSM firewall. |
286 | COBIT: Most Active Ports Through Firewall - Cisco PIX | Displays the most active ports used through the Cisco PIX firewall. |
287 | COBIT: Most Active Ports Through Firewall - Fortinet | Displays the most active ports used through the Fortinet firewall. |
288 | COBIT: Most Active Ports Through Firewall - Juniper Firewall | Displays the most active ports used through the Juniper firewall. |
289 | COBIT: Most Active Ports Through Firewall - Nortel | Displays the most active ports used through the Nortel firewall. |
290 | COBIT: Most Used Mail Commands - Exchange 2000/2003 | Displays the most used email protocol commands on Microsoft Exchange servers. |
291 | COBIT: NetApp Filer Audit Accounts Enabled | Displays all accounts enabled on NetApp Filer Audit to ensure authorized and appropriate access. |
292 | COBIT: NetApp Filer Audit Group Members Added | Displays all accounts added to groups on the NetApp Filer Audit to ensure appropriate access. |
293 | COBIT: NetApp Filer Audit Group Members Deleted | Displays all accounts removed from groups on the NetApp Filer Audit to ensure appropriate access. |
294 | COBIT: NetApp Filer Audit Logs Cleared | Displays all audit logs clearing activities on NetApp Filer Audit to detect access violations or unusual activity. |
295 | COBIT: NetApp Filer Audit Login Failed | Displays all NetApp Filer Audit Login events which have failed. |
296 | COBIT: NetApp Filer Audit Login Successful | Displays all NetApp Filer Audit Login events which have succeeded. |
297 | COBIT: NetApp Filer Audit Policies Modified | Displays all policy modification activities on NetApp Filer Audit to ensure authorized and appropriate access. |
298 | COBIT: NetApp Filer Snapshot Error | Displays events that indicate backup on the NetApp Filer has failed. |
299 | COBIT: NetApp Filer File Activity | Displays all file activities on NetApp Filer. |
300 | COBIT: NetApp Filer Login Failed | Displays all NetApp Filer Login events which have failed. |
301 | COBIT: NetApp Filer Login Successful | Displays all NetApp Filer Login events which have succeeded. |
302 | COBIT: NetApp Filer Password Changes | Displays all password change activities on NetApp Filer to ensure authorized and appropriate access. |
303 | COBIT: Network Traffic per Rule - Check Point | Displays all network traffic flowing through each rule in a network policy to ensure appropriate access. |
304 | COBIT: Network Traffic per Rule - Juniper Firewall | Displays all network traffic flowing through each rule in a network policy to ensure appropriate access. |
305 | COBIT: Network Traffic per Rule - Nortel | Displays all network traffic flowing through each rule in a network policy to ensure appropriate access. |
306 | COBIT: Oracle Database Configuration Changes | Displays Oracle database configuration changes. |
307 | COBIT: Oracle Database Data Access | Displays data access events on Oracle databases. |
308 | COBIT: Oracle Database Failed Logins | Displays all failed login attempts to the Oracle database. |
309 | COBIT: Oracle Database Successful Logins | Displays successful Oracle database logins. |
310 | COBIT: Oracle Database Permission Events | Displays events related to Oracle Server database role and privilege management. |
311 | COBIT: Oracle Database Shutdown | Displays Oracle database events related to shutting down the server. |
312 | COBIT: Oracle Database User Additions and Deletions | Displays Oracle database events related to creation and deletion of database users. |
313 | COBIT: PANOS: Attacks by Event ID | Displays Palo Alto Networks attacks by Event ID. |
314 | COBIT: PANOS: Attacks by Threat Name | Displays Palo Alto Networks attacks by threat name. |
315 | COBIT: PANOS: Attacks Detected | Displays attacks detected by Palo Alto Networks. |
316 | COBIT: Password Changes on Windows Servers | Displays all password change activities on Windows servers to ensure authorized and appropriate access. |
317 | COBIT: Peer Servers and Status | Displays all web servers providing data for cache servers and the status of requests. |
318 | COBIT: Peer Servers and Status - Cisco WSA | Displays all web servers providing data for cache servers and the status of requests on Cisco WSA. |
319 | COBIT: Peer Servers and Status - Blue Coat Proxy | Displays all web servers providing data for cache servers and the status of requests on Blue Coat Proxy. |
320 | COBIT: Peer Servers and Status - Microsoft IIS | Displays all web servers providing data for cache servers and the status of requests on Microsoft IIS. |
321 | COBIT: Periodic Review of Log Reports | Displays all review activities performed by administrators to ensure review for any access violations. |
322 | COBIT: Periodic Review of User Access Logs | Displays all review activities performed by administrators to ensure review for any access violations. |
323 | COBIT: Permissions Modified on Windows Servers | Displays all permission modification activities on Windows Servers to ensure authorized access. |
324 | COBIT: Policies Modified on Windows Servers | Displays all policy modification activities on Windows servers to ensure authorized and appropriate access. |
325 | COBIT: Ports Allowed Access - Check Point | Displays all connections passed through the Check Point by port. |
326 | COBIT: Ports Allowed Access - Cisco ASA | Displays all connections passed through the Cisco ASA by port. |
327 | COBIT: Ports Allowed Access - Cisco IOS | Displays all connections passed through the Cisco IOS by port. |
328 | COBIT: Ports Allowed Access - Cisco FWSM | Displays all connections passed through the Cisco FWSM by port. |
329 | COBIT: Ports Allowed Access - Cisco Netflow | Displays all connections passed through the Cisco Netflow by port. |
330 | COBIT: Ports Allowed Access - Cisco PIX | Displays all connections passed through the Cisco PIX by port. |
331 | COBIT: Ports Allowed Access - F5 BIG-IP TMOS | Displays all connections passed through the F5 BIG-IP TMOS by port. |
332 | COBIT: Ports Allowed Access - Fortinet | Displays all connections passed through the Fortinet by port. |
333 | COBIT: Ports Allowed Access - Juniper Firewall | Displays all connections passed through the Juniper Firewall by port. |
334 | COBIT: Ports Allowed Access - Juniper JunOS | Displays all connections passed through the Juniper JunOS by port. |
335 | COBIT: Ports Allowed Access - Juniper RT Flow | Displays all connections passed through the Juniper RT Flow by port. |
336 | COBIT: Ports Allowed Access - Nortel | Displays all connections passed through the Nortel by port. |
337 | COBIT: Ports Allowed Access - PANOS | Displays all connections passed through the Palo Alto Networks by port. |
338 | COBIT: Ports Allowed Access - Sidewinder | Displays all connections passed through the Sidewinder by port. |
339 | COBIT: Ports Allowed Access - VMware vShield | Displays all connections passed through the VMware vShield by port. |
340 | COBIT: Ports Denied Access - Check Point | Displays the applications that have been denied access the most by the Check Point. |
341 | COBIT: Ports Denied Access - Cisco ASA | Displays the applications that have been denied access the most by the Cisco ASA. |
342 | COBIT: Ports Denied Access - Cisco FWSM | Displays the applications that have been denied access the most by the Cisco FWSM. |
343 | COBIT: Ports Denied Access - Cisco IOS | Displays the applications that have been denied access the most by the Cisco IOS. |
344 | COBIT: Ports Denied Access - Cisco PIX | Displays the applications that have been denied access the most by the Cisco PIX. |
345 | COBIT: Ports Denied Access - Cisco Router | Displays the applications that have been denied access the most by the Cisco Router. |
346 | COBIT: Ports Denied Access - F5 BIG-IP TMOS | Displays the applications that have been denied access the most by the F5 BIG-IP TMOS. |
347 | COBIT: Ports Denied Access - Fortinet | Displays the applications that have been denied access the most by the Fortinet. |
348 | COBIT: Ports Denied Access - Juniper Firewall | Displays the applications that have been denied access the most by the Juniper Firewall. |
349 | COBIT: Ports Denied Access - Juniper JunOS | Displays the applications that have been denied access the most by the Juniper JunOS. |
350 | COBIT: Ports Denied Access - Juniper RT Flow | Displays the applications that have been denied access the most by the Juniper RT Flow. |
351 | COBIT: Ports Denied Access - Nortel | Displays the applications that have been denied access the most by the Nortel. |
352 | COBIT: Ports Denied Access - PANOS | Displays the applications that have been denied access the most by the Palo Alto Networks. |
353 | COBIT: Ports Denied Access - Sidewinder | Displays the applications that have been denied access the most by the Sidewinder. |
354 | COBIT: Ports Denied Access - VMware vShield | Displays the applications that have been denied access the most by the VMware vShield Edge. |
355 | COBIT: Pulse Connect Secure Policy Changed | Displays all configuration changes to the Pulse Connect Secure policies. |
356 | COBIT: Pulse Connect Secure Successful Logins | Displays all successful logins through the Pulse Connect Secure. |
357 | COBIT: RACF Accounts Created | Displays all accounts created on RACF servers to ensure authorized and appropriate access. |
358 | COBIT: RACF Accounts Deleted | Displays all accounts deleted on RACF servers to ensure authorized and appropriate access. |
359 | COBIT: RACF Accounts Modified | Displays all events when a network user profile has been modified. |
360 | COBIT: RACF Failed Logins | Displays all failed login attempts to review any access violations or unusual activity. |
361 | COBIT: RACF Files Accessed | Displays all files accessed on RACF servers to ensure appropriate access. |
362 | COBIT: RACF Password Changed | Displays all password change activities on RACF servers to ensure authorized and appropriate access. |
363 | COBIT: RACF Permissions Changed | Displays all permission modification activities on RACF to ensure authorized access. |
364 | COBIT: RACF Process Started | Displays all processes started on the RACF servers. |
365 | COBIT: RACF Successful Logins | Displays successful logins to ensure only authorized personnel have access. |
366 | COBIT: Recipient Domains Experiencing Delay - Exchange 2000/2003 | Displays the recipient domains that have experienced the most delivery delays. |
367 | COBIT: Root Logins | Displays root logins. |
368 | COBIT: Sender and Recipients Exchanging the Most Emails - Exchange 2000/2003 | Displays the top email sender and recipient combinations. |
369 | COBIT: Sensors Generating Alerts | Displays the IDS sensors that generated the most alerts. |
370 | COBIT: Sensors Generating Alerts - Cisco IOS | Displays the IDS sensors that generated the most alerts by Cisco IOS. |
371 | COBIT: Sensors Generating Alerts - FireEye MPS | Displays the IDS sensors that generated the most alerts by FireEye MPS. |
372 | COBIT: Sensors Generating Alerts - SiteProtector | Displays the IDS sensors that generated the most alerts by SiteProtector. |
373 | COBIT: Sensors Generating Alerts - Sourcefire Defense Center | Displays the IDS sensors that generated the most alerts by Sourcefire Defense Center. |
374 | COBIT: Servers Under Attack | Displays all servers under attack. |
375 | COBIT: Servers Under Attack - Cisco IOS | Displays all servers under attack by Cisco IOS. |
376 | COBIT: Servers Under Attack - HIPS | Displays all servers under attack. |
377 | COBIT: Servers Under Attack - FireEye MPS | Displays all servers under attack by FireEye MPS. |
378 | COBIT: Servers Under Attack - ISS SiteProtector | Displays all servers under attack by ISS SiteProtector. |
379 | COBIT: Servers Under Attack - SiteProtector | Displays all servers under attack by SiteProtector. |
380 | COBIT: Servers Under Attack - Sourcefire Defense Center | Displays all servers under attack by Sourcefire Defense Center. |
381 | COBIT: Sidewinder Configuration Changes | Displays Sidewinder configuration changes. |
382 | COBIT: Source IP Sending To Most Recipients - Exchange 2000/2003 | Displays IP addresses that are sending to the most recipients. |
383 | COBIT: Source of Attacks | Displays the sources that have initiated the most attacks. |
384 | COBIT: Source of Attacks - Cisco IOS | Displays the sources that have initiated the most attacks by Cisco IOS. |
385 | COBIT: Source of Attacks - HIPS | Displays the sources that have initiated the most attacks. |
386 | COBIT: Source of Attacks - ISS SiteProtector | Displays the sources that have initiated the most attacks by ISS SiteProtector. |
387 | COBIT: Source of Attacks - FireEye MPS | Displays the sources that have initiated the most attacks by FireEye MPS. |
388 | COBIT: Source of Attacks - SiteProtector | Displays the sources that have initiated the most attacks by SiteProtector. |
389 | COBIT: Source of Attacks - Sourcefire Defense Center | Displays the sources that have initiated the most attacks by Sourcefire Defense Center. |
390 | COBIT: Successful Logins | Displays successful logins to ensure only authorized personnel have access. |
391 | COBIT: Sybase ASE Database Backup and Restoration | Displays Sybase ASE DUMP and LOAD events. |
392 | COBIT: Sybase ASE Database Configuration Changes | Displays configuration changes to the Sybase database. |
393 | COBIT: Sybase ASE Database Create Events | Displays Sybase ASE events involving the CREATE statement. |
394 | COBIT: Sybase ASE Database Data Access | Displays Sybase ASE events involving the SELECT statement. |
395 | COBIT: Sybase ASE Database Drop Events | Displays Sybase ASE events involving the DROP statement. |
396 | COBIT: Sybase ASE Database Startup or Shutdown | Displays all startup and shutdown events for the Sybase database. |
397 | COBIT: Sybase ASE Database User Additions and Deletions | Displays Sybase database events related to creation and deletion of database users. |
398 | COBIT: Sybase ASE Failed Logins | Displays failed Sybase ASE database logins. |
399 | COBIT: Sybase ASE Successful Logins | Displays successful Sybase ASE database logins. |
400 | COBIT: Symantec AntiVirus: Attacks by Threat Name | Displays Symantec AntiVirus attacks by threat name. |
401 | COBIT: Symantec AntiVirus: Attacks Detected | Displays attacks detected by Symantec AntiVirus. |
402 | COBIT: Symantec AntiVirus: Scans | Displays scans using Symantec AntiVirus. |
403 | COBIT: Symantec AntiVirus: Updated | Displays updates to Symantec AntiVirus. |
404 | COBIT: Symantec Endpoint Protection: Attacks by Threat Name | Displays Symantec Endpoint Protection attacks by threat name. |
405 | COBIT: Symantec Endpoint Protection: Attacks Detected | Displays attacks detected by Symantec Endpoint Protection. |
406 | COBIT: Symantec Endpoint Protection Configuration Changes | Displays Symantec Endpoint Protection configuration changes. |
407 | COBIT: Symantec Endpoint Protection Password Changes | Displays all password change activities on Symantec Endpoint Protection to ensure authorized and appropriate access. |
408 | COBIT: Symantec Endpoint Protection Policy Add, Remove, or Modify | Displays all events when a Symantec Endpoint Protection policy is added, removed, or modified. |
409 | COBIT: Symantec Endpoint Protection: Scans | Displays scans using Symantec Endpoint Protection. |
410 | COBIT: Symantec Endpoint Protection: Updated | Displays updates to Symantec Endpoint Protection. |
411 | COBIT: TIBCO ActiveMatrix Administrator Failed Logins | Displays all TIBCO ActiveMatrix Administrator login events which have failed. |
412 | COBIT: TIBCO ActiveMatrix Administrator Permission Changes | Displays events related to TIBCO ActiveMatrix Administrator permission modifications. |
413 | COBIT: TIBCO ActiveMatrix Administrator Successful Logins | Displays successful logins to TIBCO ActiveMatrix Administrator to ensure only authorized personnel have access. |
414 | COBIT: TIBCO Administrator Password Changes | Displays all password change activities on TIBCO Administrator to ensure authorized and appropriate access. |
415 | COBIT: TIBCO Administrator Permission Changes | Displays events related to TIBCO Administrator permission modifications. |
416 | COBIT: TrendMicro Control Manager: Attacks Detected | Displays attacks detected by TrendMicro Control Manager. |
417 | COBIT: TrendMicro Control Manager: Attacks Detected by Threat Name | Displays attacks detected by TrendMicro Control Manager by threat name. |
418 | COBIT: TrendMicro OfficeScan: Attacks Detected | Displays attacks detected by TrendMicro OfficeScan. |
419 | COBIT: TrendMicro OfficeScan: Attacks Detected by Threat Name | Displays attacks detected by TrendMicro OfficeScan by threat name. |
420 | COBIT: Tripwire Modifications, Additions, and Deletions | Displays system modifications, additions, and deletions detected by Tripwire. |
421 | COBIT: Trusted Domain Created on Windows Servers | Displays all trusted domains created on Windows servers to ensure authorized and appropriate access. |
422 | COBIT: Trusted Domain Deleted on Windows Servers | Displays all trusted domains deleted on Windows servers to ensure authorized and appropriate access. |
423 | COBIT: Unauthorized Logins | Displays all logins from unauthorized users to ensure appropriate access to data. |
424 | COBIT: Unencrypted Logins | Displays all unencrypted logins to ensure secure access to data. |
425 | COBIT: Unencrypted Network Services - Check Point | Displays Check Point firewall traffic containing unencrypted network services. |
426 | COBIT: Unencrypted Network Services - Cisco ASA | Displays Cisco ASA firewall traffic containing unencrypted network services. |
427 | COBIT: Unencrypted Network Services - Cisco FWSM | Displays Cisco FWSM firewall traffic containing unencrypted network services. |
428 | COBIT: Unencrypted Network Services - Cisco IOS | Displays Cisco IOS firewall traffic containing unencrypted network services. |
429 | COBIT: Unencrypted Network Services - Cisco Netflow | Displays Cisco Netflow traffic containing unencrypted network services. |
430 | COBIT: Unencrypted Network Services - Cisco PIX | Displays Cisco PIX firewall traffic containing unencrypted network services. |
431 | COBIT: Unencrypted Network Services - F5 BIG-IP TMOS | Displays F5 BIG-IP TMOS firewall traffic containing unencrypted network services. |
432 | COBIT: Unencrypted Network Services - Fortinet | Displays Fortinet firewall traffic containing unencrypted network services. |
433 | COBIT: Unencrypted Network Services - Juniper Firewall | Displays Juniper firewall traffic containing unencrypted network services. |
434 | COBIT: Unencrypted Network Services - Juniper JunOS | Displays Juniper JunOS firewall traffic containing unencrypted network services. |
435 | COBIT: Unencrypted Network Services - Juniper RT Flow | Displays Juniper RT Flow firewall traffic containing unencrypted network services. |
436 | COBIT: Unencrypted Network Services - Nortel | Displays Nortel firewall traffic containing unencrypted network services. |
437 | COBIT: Unencrypted Network Services - PANOS | Displays Palo Alto Networks firewall traffic containing unencrypted network services. |
438 | COBIT: Unencrypted Network Services - Sidewinder | Displays Sidewinder firewall traffic containing unencrypted network services. |
439 | COBIT: Unencrypted Network Services - VMware vShield | Displays VMware vShield firewall traffic containing unencrypted network services. |
440 | COBIT: UNIX Failed Logins | Displays failed UNIX logins for known and unknown users. |
441 | COBIT: Users Created on Servers | Displays all users created on servers to ensure authorized and appropriate access. |
442 | COBIT: Users Removed from Servers | Displays all users removed from servers to ensure timely removal of terminated users. |
443 | COBIT: Users Using the Proxies | Displays users who have been surfing the web through the proxy servers. |
444 | COBIT: Users Using the Proxies - Cisco WSA | Displays users who have been surfing the web through the proxy servers on Cisco WSA. |
445 | COBIT: Users Using the Proxies - Blue Coat Proxy | Displays users who have been surfing the web through the proxy servers on Blue Coat Proxy. |
446 | COBIT: Users Using the Proxies - Microsoft IIS | Displays users who have been surfing the web through the proxy servers on Microsoft IIS. |
447 | COBIT: vCenter Change Attributes | Modification of VMware vCenter and VMware ESX properties. |
448 | COBIT: vCenter Data Move | Entity has been moved within the VMware vCenter Infrastructure. |
449 | COBIT: vCenter Datastore Events | Displays create, modify, and delete datastore events on VMware vCenter. |
450 | COBIT: vCenter Failed Logins | Failed logins to the VMware vCenter console. |
451 | COBIT: vCenter Modify Firewall Policy | Displays changes to the VMware ESX allowed services firewall policy. |
452 | COBIT: vCenter Orchestrator Change Attributes | Modification of VMware vCenter Orchestrator properties. |
453 | COBIT: vCenter Orchestrator Datastore Events | Displays create, modify, and delete datastore events on VMware vCenter Orchestrator. |
454 | COBIT: vCenter Orchestrator Data Move | Entity has been moved within the VMware vCenter Orchestrator Infrastructure. |
455 | COBIT: vCenter Orchestrator Failed Logins | Displays all failed logins for VMware vCenter Orchestrator. |
456 | COBIT: vCenter Orchestrator Virtual Machine Created | Virtual machine has been created from VMware vCenter Orchestrator. |
457 | COBIT: vCenter Orchestrator Virtual Machine Deleted | Virtual machine has been deleted from VMware vCenter Orchestrator. |
458 | COBIT: vCenter Orchestrator Virtual Machine Shutdown | Virtual machine has been shutdown or paused from VMware vCenter Orchestrator console. |
459 | COBIT: vCenter Orchestrator Virtual Machine Started | Virtual machine has been started or resumed from VMware vCenter Orchestrator console. |
460 | COBIT: vCenter Orchestrator vSwitch Added, Changed or Removed | vSwitch has been added, modified or removed from VMware vCenter Orchestrator console. |
461 | COBIT: vCenter Resource Usage Change | Resources have changed on VMware vCenter. |
462 | COBIT: vCenter Restart ESX Services | VMware vCenter restarted services running on VMware ESX Server. |
463 | COBIT: vCenter Shutdown or Restart of ESX Server | VMware ESX Server is shutdown or restarted from VMware vCenter console. |
464 | COBIT: vCenter Successful Logins | Successful logins to the VMware vCenter console. |
465 | COBIT: vCenter User Permission Change | A permission role has been added, changed, removed, or applied to a user on VMware vCenter server. |
466 | COBIT: vCenter Virtual Machine Created | Virtual machine has been created from VMware vCenter console. |
467 | COBIT: vCenter Virtual Machine Deleted | Virtual machine has been deleted or removed from VMware vCenter console. |
468 | COBIT: vCenter Virtual Machine Shutdown | Virtual machine has been shutdown or paused from VMware vCenter console. |
469 | COBIT: vCenter Virtual Machine Started | Virtual machine has been started or resumed from VMware vCenter console. |
470 | COBIT: vCenter vSwitch Added, Changed or Removed | vSwitch on VMware ESX server has been added, modified or removed from the VMware vCenter console. |
471 | COBIT: vCloud Failed Logins | Failed logins to the VMware vCloud Director console. |
472 | COBIT: vCloud Organization Created | VMware vCloud Director Organization created events. |
473 | COBIT: vCloud Organization Deleted | VMware vCloud Director Organization deleted events. |
474 | COBIT: vCloud Organization Modified | VMware vCloud Director Organization modified events. |
475 | COBIT: vCloud Successful Logins | Successful logins to the VMware vCloud Director console. |
476 | COBIT: vCloud User Created | VMware vCloud Director User created events. |
477 | COBIT: vCloud User Deleted or Removed | VMware vCloud Director users have been deleted or removed from the system. |
478 | COBIT: vCloud vApp Created, Modified, or Deleted | VMware vCloud Director vApp created, deleted, and modified events. |
479 | COBIT: vCloud vDC Created, Modified, or Deleted | VMware vCloud Director virtual datacenter created, modified, or deleted events. |
480 | COBIT: VPN Connection Average Bandwidth | Displays the average bandwidth for VPN connections. |
481 | COBIT: VPN Connection Average Duration | Displays the average duration of VPN connections. |
482 | COBIT: VPN Connections by Users | Displays users who are made the most connections. |
483 | COBIT: VPN Denied Connections by Users | Displays users with the most denied connections. |
484 | COBIT: VPN Connection Disconnect Reasons | Displays the disconnect reasons for VPN connections. |
485 | COBIT: VPN Sessions by Destination IPs | Displays all VPN sessions categorized by destination IP addresses. |
486 | COBIT: VPN Sessions by Source IPs | Displays all VPN sessions categorized by source IP addresses. |
487 | COBIT: VPN Sessions by Users | Displays all VPN sessions categorized by authenticated users. |
488 | COBIT: VPN Users Accessing Corporate Network | Displays all users logging into the corporate network via Virtual Private Network to ensure appropriate access. |
489 | COBIT: vShield Edge Configuration Changes | Displays changes to VMware vShield Edge policies. |
490 | COBIT: Web Access from All Users | Displays all web-based access by all users for regular reviews and updates. |
491 | COBIT: Web Access from All Users - F5 BIG-IP TMOS | Displays all web-based access by all users for regular reviews and updates on F5 BIG-IP TMOS. |
492 | COBIT: Web Access from All Users - Fortinet | Displays all web-based access by all users for regular reviews and updates on Fortinet. |
493 | COBIT: Web Access from All Users - PANOS | Displays all web-based access by all users for regular reviews and updates on Palo Alto Networks. |
494 | COBIT: Web Access from All Users - Microsoft IIS | Displays all web-based access by all users for regular reviews and updates on Microsoft IIS. |
495 | COBIT: Web Access to Applications | Displays all web-based access to applications to ensure appropriate and authorized access. |
496 | COBIT: Web Access to Applications - F5 BIG-IP TMOS | Displays all web-based access to applications to ensure appropriate and authorized access on F5 BIG-IP TMOS. |
497 | COBIT: Web Access to Applications - Fortinet | Displays all web-based access to applications to ensure appropriate and authorized access on Fortinet. |
498 | COBIT: Web Access to Applications - PANOS | Displays all web-based access to applications to ensure appropriate and authorized access on Palo Alto Networks. |
499 | COBIT: Web Access to Applications - Microsoft IIS | Displays all web-based access to applications to ensure appropriate and authorized access on Microsoft IIS. |
500 | COBIT: Web URLs Visited | Displays URLs that have been visited. |
501 | COBIT: Web URLs Visited - F5 BIG-IP TMOS | Displays URLs that have been visited on F5 BIG-IP TMOS. |
502 | COBIT: Web URLs Visited - Fortinet | Displays URLs that have been visited on Fortinet. |
503 | COBIT: Web URLs Visited - Microsoft IIS | Displays URLs that have been visited on Microsoft IIS. |
504 | COBIT: Web URLs Visited - PANOS | Displays URLs that have been visited on Palo Alto Networks. |
505 | COBIT: Web URLs Visited via Proxy | Displays URLs that have been visited via a proxy server. |
506 | COBIT: Web URLs Visited via Proxy - Blue Coat Proxy | Displays URLs that have been visited via a proxy server on Blue Coat Proxy. |
507 | COBIT: Web URLs Visited via Proxy - Cisco WSA | Displays URLs that have been visited via a proxy server on Cisco WSA. |
508 | COBIT: Web URLs Visited via Proxy - Microsoft IIS | Displays URLs that have been visited via a proxy server on Microsoft IIS. |
509 | COBIT: Windows Accounts Enabled | Displays all accounts enabled on Windows servers to ensure authorized and appropriate access. |
510 | COBIT: Windows Audit Logs Cleared | Displays all audit logs clearing activities on Windows servers to detect access violations or unusual activity. |
511 | COBIT: Windows Events by Users | Displays a summary of access-related Windows events by source and target users. |
512 | COBIT: Windows Events Summary | Displays a summary of access-related Windows events by count. |
513 | COBIT: Windows Group Members Added | Displays all accounts added to groups on the Windows servers to ensure appropriate access. |
514 | COBIT: Windows Group Members Deleted | Displays all accounts removed from groups on the Windows servers to ensure appropriate access. |
515 | COBIT: Windows New Services Installed | Displays a list of new services installed on Windows servers to ensure authorized access. |
516 | COBIT: Windows Programs Accessed | Displays all programs started and stopped on servers to ensure appropriate access. |
517 | COBIT: Windows Servers Restarted | Displays all Windows server restart activities to detect unusual activities. |
518 | COBIT: Windows Software Update Activities | Displays all events related to the system's software or patch update. |
519 | COBIT: Windows Software Update Failures | Displays all failed events related to the system’s software or patch update. |
520 | COBIT: Windows Software Update Successes | Displays all successful events related to the system's software or patch update. |
Copyright © Cloud Software Group, Inc. All rights reserved.