KSC Open API
Kaspersky Security Center API description
|
List of event attributes is presented below. Do not confuse this list with List of event attributes published by server, which is used only when publishing events from the server side.
Name | Type | Description | |||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
"GNRL_EA_SEVERITY" | paramInt | Event severity. May have the following values:
| |||||||||||||||
"product_name" | paramString | Product name (up to 32 symbols) *. | |||||||||||||||
"product_version" | paramString | Product version name (up to 32 symbols) *. | |||||||||||||||
"product_displ_version" | paramString | Product build (up to 32 symbols). | |||||||||||||||
"hostname" | paramString | Host name. A unique server-generated string (up to 256 symbols). | |||||||||||||||
"task_display_name" | paramString | Display name of the task (up to 100 symbols). | |||||||||||||||
"hostdn" | paramString | Display name of the host (up to 256 symbols). | |||||||||||||||
"domain_name" | paramString | Domain name of the host (added by the administration system). | |||||||||||||||
"host_id" | paramInt | Identity of the host (added by administration system). | |||||||||||||||
"host_type" | paramInt | Type of host in the administration hierarchy (added by the administration system). See Administration Hierarchy Host Type enum. | |||||||||||||||
"group_name" | paramString | Name of the group where the host is located (up to 128 symbols). | |||||||||||||||
"group_id" | paramInt | ID of the group where the host is located. | |||||||||||||||
"event_id" | paramInt | Event ID. | |||||||||||||||
"event_db_id" | paramLong | Event ID (64-bit) since AK 8.5. | |||||||||||||||
"event_type" | paramString | Name of the event type (up to 50 symbols). For example:
| |||||||||||||||
"event_type_display_name" | paramString | Display name of the event type (up to 100 symbols). | |||||||||||||||
"body" | paramParams | Event body (added by the administration system). | |||||||||||||||
"event_type_id" | paramInt | Event type unique identity. | |||||||||||||||
"task_old_state" | paramInt | Old task state (for events of type "KLPRCI_TaskState" or "KLEVP_GroupTaskSyncState"). The following values are possible: Group task state enum. | |||||||||||||||
"task_new_state" | paramInt | New task state (for events of type "KLPRCI_TaskState" or "KLEVP_GroupTaskSyncState"). The following values are possible: Group task state enum. | |||||||||||||||
"rise_time" | paramDateTime | Time when the event was published, in UTC. | |||||||||||||||
"registration_time" | paramDateTime | Time when the event was registered at the Administration Server, in UTC. | |||||||||||||||
"GNRL_EA_ID" | paramInt | Event type localization identity. | |||||||||||||||
"GNRL_EA_DESCRIPTION" | paramString | Event description (up to 1000 symbols). | |||||||||||||||
"GNRL_EA_DESCRIPTION_DISP_NAME" | paramString | Attribute added by the administration system. Localized event description (up to 1000 symbols). | |||||||||||||||
"GNRL_EA_PARAM_N" | paramString | Extra event parameters depending on event type "event_type", where N = 1..9. See Parameters GNRL_EA_PARAM_* for some events. | |||||||||||||||
"GNRL_EXTRA_PARAMS" | paramString | Additional event parameter, which is not to be stored in the event's properties in the KSC database. Its meaning depends on the event type. | |||||||||||||||
"KLVSRV_ID" | paramInt | Virtual server ID in the database. 0 for non-virtual server. | |||||||||||||||
"KLVSRV_DN" | paramString | Virtual server display name (up to 256 symbols). | |||||||||||||||
"GNRL_COMPLETED_PERCENT" | paramInt | Operation completion percent. | |||||||||||||||
"event_vm_info" | paramParams | Information about the virtual machine the published the event. Should contain the following parameters:
|