USER_LOGIN¶
Match messages AUTHPRIV-6-SYSTEM_MSG from NX-OS.
Message example:
sw01.bjm01: 2017 Jul 26 14:42:46 UTC: %AUTHPRIV-6-SYSTEM_MSG: pam_unix(dcos_sshd:session): session opened for user luke by (uid=0) - dcos_sshd[12977] # noqa
Output example:
{
"users": {
"user": {
"luke": {
"action": {
"login": true
},
"uid": 0
}
}
}
}
There is no YANG model available yet to map this class of messages. Please check the Structured message example section to see the structure.
Implemented for¶
- opengear
- nxos
Syslog message example¶
<30>ztp-tankstelle_1-ts port02 2018-Nov-12 10:47:29.515 LOGIN: root
Structured message example¶
{
"error": "USER_LOGIN",
"facility": 3,
"host": "ztp-tankstelle_1-ts",
"ip": "127.0.0.1",
"message_details": {
"date": "2018-Nov-12",
"facility": 3,
"host": "ztp-tankstelle_1-ts",
"message": "root",
"port": "port02",
"pri": "30",
"severity": 6,
"tag": "LOGIN",
"time": "10:47:29.515"
},
"os": "opengear",
"severity": 6,
"timestamp": 1542019649,
"yang_message": {
"users": {
"user": {
"root": {
"action": {
"login": true
}
}
}
}
},
"yang_model": "NO_MODEL"
}