USER_LOGIN¶

Match messages AUTHPRIV-6-SYSTEM_MSG from NX-OS.

Message example:

sw01.bjm01: 2017 Jul 26 14:42:46 UTC: %AUTHPRIV-6-SYSTEM_MSG: pam_unix(dcos_sshd:session): session opened for user luke by (uid=0) - dcos_sshd[12977]  # noqa

Output example:

{
  "users": {
    "user": {
      "luke": {
        "action": {
          "login": true
        },
        "uid": 0
      }
    }
  }
}

There is no YANG model available yet to map this class of messages. Please check the Structured message example section to see the structure.

Implemented for¶

opengear
nxos

Syslog message example¶

<30>ztp-tankstelle_1-ts port02 2018-Nov-12 10:47:29.515 LOGIN: root

Structured message example¶

{
  "error": "USER_LOGIN",
  "facility": 3,
  "host": "ztp-tankstelle_1-ts",
  "ip": "127.0.0.1",
  "message_details": {
      "date": "2018-Nov-12",
      "facility": 3,
      "host": "ztp-tankstelle_1-ts",
      "message": "root",
      "port": "port02",
      "pri": "30",
      "severity": 6,
      "tag": "LOGIN",
      "time": "10:47:29.515"
  },
  "os": "opengear",
  "severity": 6,
  "timestamp": 1542019649,
  "yang_message": {
      "users": {
          "user": {
              "root": {
                  "action": {
                      "login": true
                  }
              }
          }
      }
  },
  "yang_model": "NO_MODEL"
}

Navigation

Useful Links

Related Topics