Stay organized with collections
Save and categorize content based on your preferences.
Change log for SOLARIS_SYSTEM
Date
Changes
2025-04-08
Enhancement:
- Added Grok patterns to parse new format of logs.
- metadata.event_timestamp: Newly mapped "ts" raw log field with `metadata.event_timestamp` UDM field.
2024-12-29
Enhancement:
- Added support for a new format of syslog logs.
- Mapped "prin_ip" to ""principal.ip".
2024-12-06
Enhancement:
- Added support for a new format of syslog logs.
2024-04-05
Enhancement:
- Mapped "targetDisplayName" to "target.user.user_display_name".
- When "process" is "sudo", then mapped "user" to "principal.user.user_display_name".
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-04-29 UTC."],[[["SOLARIS_SYSTEM's parser has undergone several enhancements since its creation on February 13, 2024."],["Support for a new format of syslog logs was added on both December 6, 2024, and December 29, 2024."],["The system now maps fields like \"prin_ip\" to \"principal.ip\" and \"targetDisplayName\" to \"target.user.user_display_name\"."],["When the process is \"sudo,\" the \"user\" field is now mapped to \"principal.user.user_display_name\" as of April 5, 2024."]]],[]]
