Stay organized with collections
Save and categorize content based on your preferences.
Change log for ZSCALER_ZPA
Date
Changes
2025-05-08
- Promoted ZSCALER_ZPA Premium parser to default. You can see full details in the parser configuration page - https://cloud.google.com/chronicle/docs/ingestion/default-parsers/ingest-zscaler-logs
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-08-29 UTC."],[[["\u003cp\u003eThis changelog documents enhancements and updates for ZSCALER_ZPA, detailing modifications made to various fields and data mappings.\u003c/p\u003e\n"],["\u003cp\u003eRecent updates have focused on mapping various data points, such as connection status, timestamps, and byte transfer information, to specific fields within the system's data structure.\u003c/p\u003e\n"],["\u003cp\u003eConditional logic was introduced to adjust the "metadata.event_type" to "NETWORK_CONNECTION" under specific circumstances involving "has_principal", "has_target", and "GENERIC_EVENT".\u003c/p\u003e\n"],["\u003cp\u003eThe system now maps "Hostname", "TotalBytesRx", "TotalBytesTx", "SessionStatus", "Platform", "Version", "CertificateCN", "Latitude", and "Longitude" to their respective designated fields.\u003c/p\u003e\n"],["\u003cp\u003eThe parser for the log was initially created on 2023-02-22, with later updates on the structure and filtering of the data logs.\u003c/p\u003e\n"]]],[],null,["# Change log for ZSCALER_ZPA\n=========================="]]
