KSC Open API
Kaspersky Security Center API description
|
Parameter 'pParams' of SrvView::ResetIterator method may contain optional parameter:
View contains list of events.
View name: "EventsSrvViewName"
List of view attributes and options is presented below.
Name | Type | Description |
---|---|---|
"event_db_id" | paramLong | Event ID (64-bit) since AK 8.5. |
"GNRL_EA_SEVERITY" | paramInt | Event severity. May have one of the following values:
|
"KLEVP_EVENT_GROUP_TASK_ID" | paramString | If the event has been published by the group task, then the parameter is equal to the ID of the task. |
"group_name" | paramString | Name of the group where the host is located. |
"product_name" | paramString | |
"product_displ_version" | paramString | Product build. |
"event_type" | paramString | Name of the event type:
|
"event_type_id" | paramInt | Unique ID of the event type. |
"event_type_display_name" | paramString | Display name of the event type. |
"GNRL_EA_DESCRIPTION" | paramString | Event description. |
"rise_time" | paramDateTime | Time when the event was published, in UTC. |
"registration_time" | paramDateTime | Time when the event was registered by Administration Server, in UTC. |
"GNRL_EA_ID" | paramInt | Numeric event ID. |
"task_new_state" | paramInt | Task state (for the "KLPRCI_TaskState" events). The following values are possible: Group task state enum. |
"task_old_state" | paramInt | Old task state. Possible values are the same as for "task_new_state". |
"task_display_name" | paramString | Display name of the task. |
"host_id" | paramLong | Host ID. |
"group_id" | paramInt | ID of the group where the host is located. |
"hostname" | paramString | Host name - a unique server-generated string. |
"hostdn" | paramString | Display name of the host. |
"KLEVP_EVENT_HOST_IP_ADDRESS" | paramLong | Host IPv4 address (little-endian byte order). |
"KLEVP_EVENT_HOST_CONN_IP_ADDRESS" | paramLong | Host IPv4 connection address (little-endian byte order). |
"KLEVP_EVENT_DOMAIN" | paramString | DNS suffix. |
"domain_name" | paramString | Domain name. |
"KLEVP_EVENT_HOST_STATUS" | paramInt | Extended status ID of the host. See "KLHST_WKS_STATUS" in List of host attributes. |
"KLEVP_EVENT_HOST_NETBIOSNAME" | paramString | Host Windows (NetBIOS) name. |
"GNRL_EA_PARAM_N" | paramString | Extra event parameters, depending on the event type "event_type", where N = 1..9. See Parameters GNRL_EA_PARAM_* for some events. |
"KLVSRV_ID" | paramInt | Virtual server ID. |
"KLVSRV_DN" | paramString | Virtual server display name. |
"FULLTEXT_SEARCH" | paramString | Search-only field for full-text search. See Full-text attribute. The following fields are included in search:
|
"EVP_MAX_EVENTS_SRCH_AREA" | paramInt | Search will be from last N events. This parameter is an optional for search. |