Traps Endpoint Security Manager Administrator's Guide
    : Email Format
    Focus
    Focus
    1. Home
    2. Traps
    3. Traps Endpoint Security Manager Administrator's Guide
    4. Reports and Logging
    5. Forward Logs to Email
    6. Email Format

    Traps Endpoint Security Manager Administrator's Guide

    Email Format

    Table of Contents

    Email Format

    The following table lists the events in Email format.
    Event
    Email Format
    AccessViolation
    <html><body><p><div>Log Event:<strong> Agent Access Violation</strong></div><p></p><div> Time:<strong> @Model.Time (UTC)</strong></div><div> Target Name:<strong> @Model["TargetName"]</strong> </div><div>Computer:<strong> @Model["host"]</strong> </div><div>Agent Version:<strong> @Model["ProductVersion"]</strong></div></p></body> </html>
    AgentAuthenticationFailed
    <html><body><p><div>Log Event:<strong> @Model["AgentIp"] authentication failed.</strong> </div><p></p><div>Time:<strong> @Model.Time (UTC)</strong></div><div> Computer:<strong>@Model["AgentIp"]</strong></div> <div>Agent Version:<strong> @Model["ProductVersion"]</strong></div></p></body> </html>
    AgentContentUpdate
    <html><body><p><div>Log Event:<strong> Agent @Model["host"] received new content version @Model["ContentVersion"].</strong></div><p></p><div> Time:<strong> @Model.Time (UTC)</strong></div><div> Computer:<strong>@Model["host"]</strong></div><div> Agent Version:<strong> @Model["ProductVersion"]</strong></div><div> By User:<strong>@Model["user"]</strong></div></p> </body></html>
    AgentPolicyChange
    <html><body><p><div>Log Event:<strong> Agent Policy Change</strong></div><p></p><div> Time:<strong> @Model.Time (UTC)</strong></div><div> Computer:<strong> @Model["host"]</strong></div><div> Agent Version:<strong> @Model["ProductVersion"]</strong></div></p></body> </html>
    AgentPolicyChangesFailed
    <html><body><p><div>Log Event:<strong> Agent Policy Changes Failed</strong></div><p></p> <div>Time:<strong> @Model.Time (UTC)</strong></div> <div>Computer:<strong> @Model["host"]</strong></div> <div>Agent Version:<strong> @Model["ProductVersion"]</strong></div></p></body> </html>
    ArchivedPreventionsFailure
    <html><body><p><div>Log Event:<strong> Archive Threats Events Failed</strong></div><p></p> <div>Time:<strong> @Model.Time (UTC)</strong></div> <div>User:<strong> @Model["user"]</strong></div><div> Number of Archived Events (Actual):<strong> @Model["progressCount"]</strong></div><div> Number of Archived Events (Total):<strong> @Model["totalPreventions"]</strong></div></p></body> </html>
    ArchivedPreventions
    <html><body><p><div>Log Event:<strong> Archive Threats Events</strong></div><p></p><div> Time:<strong> @Model.Time (UTC)</strong></div><div> User:<strong> @Model["user"]</strong></div><div> Number of Archived Events:<strong> @Model["totalPreventions"]</strong></div></p></body> </html>
    ClientInstall
    <html><body><p><div>Log Event:<strong> Agent Installed to System</strong></div><p></p><div> Time:<strong> @Model.Time (UTC)</strong></div><div> Computer:<strong> @Model["host"]</strong></div><div> Agent Version:<strong> @Model["ProductVersion"]</strong></div></p></body> </html>
    ClientLicenseInvalid
    <html><body><p><div>Log Event:<strong> Agent License Invalid</strong></div><p></p><div> Time:<strong> @Model.Time (UTC)</strong></div><div> Computer:<strong> @Model["host"]</strong></div></p> </body></html>
    ClientLicenseRequest
    <html><body><p><div>Log Event:<strong> Agent License Request</strong></div><p></p><div> Time:<strong> @Model.Time (UTC)</strong></div><div> Computer:<strong> @Model["host"]</strong></div></p> </body></html>
    ClientUninstall
    <html><body><p><div>Log Event:<strong> Agent Uninstalled from System</strong></div><p></p> <div>Time:<strong> @Model.Time (UTC)</strong></div> <div>Computer:<strong> @Model["host"]</strong></div> <div>Agent Version:<strong> @Model["ProductVersion"]</strong></div></p></body> </html>
    ClientUpgrade
    <html><body><p><div>Log Event:<strong> Agent Upgraded</strong></div><p></p><div> Time:<strong> @Model.Time (UTC)</strong></div><div> Computer:<strong> @Model["host"]</strong></div><div> Agent Version:<strong> @Model["ProductVersion"]</strong></div></p></body> </html>
    CommunicationsCheckWithProxy
    <html><body><p><div>Log Event:<strong> Communications Check With Proxy</strong></div><p></p> <div>Time:<strong> @Model.Time (UTC)</strong></div> <div>Host:<strong> @Model["esmHost"], @Model["EsmIp"]</strong></div><div> ESM Version:<strong> @Model["ProductVersion"]</strong></div><div> Status:<strong> @Model["message"]</strong></div></p> </body></html>
    ConditionDeleted
    <html><body><p><div>Log Event:<strong> Condition Deleted</strong></div><p></p><div> Time:<strong> @Model.Time (UTC)</strong></div><div> Condition Name:<strong> @Model["Name"]</strong></div> <div>Condition ID:<strong> @Model["id"]</strong> </div><div>Condition Description:<strong> @Model["Description"]</strong></div><div> By User:<strong> @Model["user"]</strong></div></p> </body></html>
    ConditionEdited
    <html><body><p><div>Log Event:<strong> Condition Added/Edited</strong></div><p></p><div> Time:<strong> @Model.Time (UTC)</strong></div><div> Condition Name:<strong> @Model.Data.Name</strong> </div><div>Condition Description:<strong> @Model.Data.Description</strong></div><div> By User:<strong> @Model["user"]</strong></div></p> </body></html>
    ConfigurationChange
    <html><body><p><div>Log Event:<strong> Settings Change</strong></div><p></p><div> Description:<strong> @Model["Property"] changed from @Model["OldValue"] to @Model["NewValue"].</strong></div><div> Time:<strong> @Model.Time (UTC)</strong></div><div> By User:<strong> @Model["user"]</strong></div><div> Server:<strong> @Model["esmHost"], @Model["EsmIp"]</strong></div></p></body></html>
    DisabledProtection
    <html><body><p><div>Log Event:<strong> Protection Disabled</strong></div><p></p><div> Description:<strong> Protection is disabled across the entire organization! </strong></div><div>Time:<strong> @Model.Time (UTC)</strong></div><div>By User:<strong> @Model["user"]</strong></div></p></body></html>
    EPMInitFailed
    <html><body><p><div>Log Event:<strong> Agent EPM Init Failed</strong></div><p></p><div> Time:<strong> @Model.Time (UTC)</strong></div><div> Computer:<strong> @Model["host"]</strong></div><div> User:<strong> @Model["user"]</strong></div><div> Agent Version:<strong> @Model["ProductVersion"]</strong></div></p></body> </html>
    EnabledProtection
    <html><body><p><div>Log Event:<strong> Protection Enabled</strong></div><p></p><div> Description:<strong> Protection is restored across the entire organization!</strong></div><div>Time:<strong> @Model.Time (UTC)</strong></div><div>By User:<strong> @Model["user"]</strong></div></p></body></html>
    EsmConfigurationChange
    <html><body><p><div>Log Event:<strong> ESM Configuration Changed</strong></div><p></p><div> Time:<strong> @Model.Time (UTC)</strong></div><div> Server Name:<strong> @Model["esmHost"], @Model["EsmIp"]</strong></div><div>By User:<strong> @Model["user"]</strong></div></p></body></html>
    EsmStatusChange
    <html><body><p><div>Log Event:<strong> ESM Status Changed</strong></div><p></p><div> Time:<strong> @Model.Time (UTC)</strong></div><div> Server Name:<strong> @Model["host"]</strong></div> <div>Status:<strong> @Model["NewStatus"]</strong> </div><div>Message:<strong> Server Status Change</strong></div></p></body></html>
    FileUploadFailure
    <html><body><p><div>Log Event:<strong> Agent File Upload Failed</strong></div><p></p><div> Time:<strong> @Model.Time (UTC)</strong></div><div> Computer:<strong> @Model["host"]</strong></div><div> Agent Version:<strong> @Model["ProductVersion"]</strong></div><div> File Name:<strong> @Model["fileName"]</strong></div> <div>Failure Reason:<strong> @Model["message"]</strong></div></p></body></html>
    HashesImport
    <html><body><p><div>Log Event:<strong> Hashes Imported</strong></div><p></p><div> Description:<strong> Hashes were Imported into the ESM</strong></div><div> Hash Count:<strong> @Model["Amount"]</strong></div> <div>Hash:<strong> @Model["Hash"]</strong></div></p> </body></html>
    Heartbeat
    <html><body><p><div>Log Event:<strong> Agent Heartbeat</strong></div><p></p><div> Time:<strong> @Model.Time (UTC)</strong></div><div> Computer:<strong> @Model["host"]</strong></div><div> Agent Version:<strong> @Model["ProductVersion"]</strong></div></p></body> </html>
    LicenseExpiration
    <html><body><p><div>Log Event:<strong> License Expiration</strong></div><p></p><div> Time:<strong> @Model.Time (UTC)</strong></div><div> License Type:<strong> @Model["poolName"] </strong> </div><div>Expiration in (days):<strong> @Model["days"] </strong></div></p></body></html>
    LicensePoolAdded
    <html><body><p><div>Log Event:<strong> License Pool Added</strong></div><p></p><div> Time:<strong> @Model.Time (UTC)</strong></div><div> License Type:<strong> @Model["licenseType"]</strong> </div><div>License Count:<strong> @Model["licenseCount"]</strong></div></p></body> </html>
    LicenseQuantity
    <html><body><p><div>Log Event:<strong> License Quantity</strong></div><p></p><div> Description:<strong> Agent Licenses are running low</strong></div><div> Time:<strong> @Model.Time (UTC)</strong></div><div> Used Licenses:<strong> @Model["deployedLicenses"]</strong></div><div> Total Licenses :<strong> @Model["totalLicenses"]</strong></div></p></body> </html>
    LicenseRevoked
    <html><body><p><div>Log Event:<strong> Agent License Revoked</strong></div><p></p><div> Time:<strong> @Model.Time (UTC)</strong></div><div> Computer:<strong> @Model["host"]</strong></div></p> </body></html>
    LocalAnalysisFeatureExtractionFailed
    <html><body><p><div>Log Event:<strong> Local Analysis Feature Extraction Failed</strong> </div><p></p><div>Description:<strong> Local Analysis Feature Extraction Failed</strong> </div><div>Content Version:<strong> @Model["ContentVersion"]</strong></div><div> Hash:<strong>@Model["Hash"]</strong></div><div> Model Version:<strong> @Model["ContentVersion"]</strong></div><div> Server Name:<strong>@Model["esmHost"], @Model["EsmIp"]</strong></div><div>By User:<strong> @Model["user"]</strong></div><div> Product Version:<strong> @Model["ProductVersion"]</strong></div></p></body> </html>
    LocalAnalysisModelUnavailable
    <html><body><p><div>Log Event:<strong> Local Analysis Model Unavailable</strong></div><p> </p><div>Time:<strong> @Model.Time (UTC)</strong> </div><div>Server Name:<strong>@Model["esmHost"], @Model["EsmIp"]</strong></div><div>By User:<strong> @Model["user"]</strong></div></p></body></html>
    LocalAnalysisModuleFailed
    <html><body><p><div>Log Event:<strong> Local Analysis Module Failed</strong></div><p></p> <div>Time:<strong> @Model.Time (UTC)</strong></div> <div>Computer:<strong> @Model["host"]</strong></div> <div>Agent Version:<strong> @Model["ProductVersion"]</strong></p></body></html>
    LocalAnalysisModuleSucceeded
    <html><body><p><div>Log Event:<strong> Local Analysis Module Succeeded</strong></div><p></p> <div>Time:<strong> @Model.Time (UTC)</strong></div> <div>Computer:<strong> @Model["host"]</strong></div> <div>Agent Version:<strong> @Model["ProductVersion"]</strong></div> Local Analysis Module Version:<strong> @Model["ModuleVersion"]</strong></div></p></body> </html>
    MachineLicenseValidationFailed
    <html><body><p><div>Log Event:<strong> Agent License Validation Failed</strong></div><p></p> <div>Time:<strong> @Model.Time (UTC)</strong></div> <div>Computer:<strong> @Model["host"]</strong></div> </div><div>Agent Version:<strong> @Model["ProductVersion"]</strong></div></p></body> </html>
    NewHash
    <html><body><p><div>Log Event:<strong> Hash Added</strong></div><p></p><div> Description:<strong> Hash was added to the ESM Hash list</strong></div> <div>Time:<strong> @Model.Time (UTC)</strong></div> <div>Hash:<strong> @Model["Hash"]</strong></div></p> </body></html>
    NotificationEvent
    <html><body><p><div>Log Event:<strong> Notification Event</strong></div><p></p><div> Time:<strong> @Model.Time (UTC)</strong></div><div> Computer:<strong> @Model["host"]</strong></div><div> User:<strong> @Model["user"]</strong></div><div> Agent Version:<strong> @Model["ProductVersion"]</strong></div><p></p><div> Module Name:<strong> @Model["EPM"]</strong></div> <div>Process Name:<strong> @Model["ProcessName"]</strong></div><div> Hash:<strong> @Model["Hash"]</strong></div><div> Prevention Key:<strong> @Model["preventionKey"]</strong></div><div> Content Version:<strong> @Model["ContentVersion"]</strong></div></p></body> </html>
    OneTimeActionComplete
    <html><body><p><div>Log Event:<strong> Agent One Time Action Completed</strong></div><p></p> <div>Time:<strong> @Model.Time (UTC)</strong></div> <div>Computer:<strong> @Model["host"]</strong></div> <div>Agent Version:<strong> @Model["ProductVersion"]</strong></div><div> Action Type:<strong> @Model["ActionType"]</strong> </div><div>Action ID:<strong> @Model["ActionID"]</strong></div></p></body></html>
    OneTimeActionFailed
    <html><body><p><div>Log Event:<strong> Agent One Time Action Failed</strong></div><p></p> <div>Time:<strong> @Model.Time (UTC)</strong></div> <div>Agent Version:<strong> @Model["ProductVersion"]</strong></div><div> Action Type:<strong> @Model["ActionType"]</strong> </div><div>Action ID:<strong> @Model["ActionID"]</strong></div></p></body></html>
    PostDetectionEvent
    <html><body><p><div>Log Event:<strong> Post Detection Event</strong></div><p></p><div> Time:<strong> @Model.Time (UTC)</strong></div><div> Computer:<strong> @Model["host"]</strong></div><div> User:<strong> @Model["user"]</strong></div><div> Agent Version:<strong> @Model["ProductVersion"]</strong></div><p></p><div> Module Name:<strong> @Model["EPM"]</strong></div> <div>Process Name:<strong> @Model["ProcessName"]</strong></div><div> Hash:<strong> @Model["Hash"]</strong></div><div> Prevention Key:<strong> @Model["preventionKey"]</strong></div><div> Content Version:<strong> @Model["ContentVersion"]</strong></div></p></body> </html>
    PreventionEvent
    <html><body><p><div>Log Event:<strong> Prevention Event</strong></div><p></p><div> Time:<strong> @Model.Time (UTC)</strong></div><div> Computer:<strong> @Model["host"]</strong></div><div> User:<strong> @Model["user"]</strong></div><div> Agent Version:<strong> @Model["ProductVersion"]</strong></div><p></p><div> Module Name:<strong> @Model["EPM"]</strong></div> <div>Process Name:<strong> @Model["ProcessName"]</strong></div><div> Hash:<strong> @Model["Hash"]</strong></div><div> Prevention Key:<strong> @Model["preventionKey"]</strong></div><div> Content Version:<strong> @Model["ContentVersion"]</strong></div></p></body> </html>
    ProcessCrashed
    <html><body><p><div>Log Event:<strong> Agent Process Crashed</strong></div><p></p><div> Time:<strong> @Model.Time (UTC)</strong></div><div> Computer:<strong> @Model["host"]</strong></div><div> Agent Version:<strong> @Model["ProductVersion"]</strong></div><div> Process name:<strong> @Model["ProcessName"]</strong> </div><div>Error message:<strong> @Model["message"]</strong></div></p></body></html>
    ProcessDeleted
    <html><body><p><div>Log Event:<strong> Process Deleted</strong></div><p></p><div> Time:<strong> @Model.Time (UTC)</strong></div><div> Process Name:<strong> @Model["Name"]</strong></div> <div>By User:<strong> @Model["user"]</strong></div> </p></body></html>
    ProcessEdited
    <html><body><p><div>Log Event:<strong> Process Added/Edited</strong></div><p></p><div> Time:<strong> @Model.Time (UTC)</strong></div><div> Process Name:<strong> @Model.Data.ProcessFilename</strong></div><div> By User:<strong> @Model["user"]</strong></div></p> </body></html>
    ProcessInjectionTimedOut
    <html><body><p><div>Log Event:<strong> Agent Process Injection Timeout</strong></div><p></p> <div>Time:<strong> @Model.Time (UTC)</strong></div> <div>Computer:<strong> @Model["host"]</strong></div> <div>Agent Version:<strong> @Model["ProductVersion"]</strong></div><div> Process Name:<strong> @Model["ProcessName"]</strong> </div><div>PID:<strong> @Model["pId"]</strong></div> <div>Severity:<strong> @Model.ExternalSeverity</strong></div></p></body> </html>
    ProvisionalEvent
    <html><body><p><div>Log Event:<strong> Provisional Event</strong></div><p></p><div> Time:<strong> @Model.Time (UTC)</strong></div><div> Computer:<strong> @Model["host"]</strong></div><div> User:<strong> @Model["user"]</strong></div><div> Agent Version:<strong> @Model["ProductVersion"]</strong></div><p></p><div> Module Name:<strong> @Model["EPM"]</strong></div> <div>Process Name:<strong> @Model["ProcessName"]</strong></div><div> Hash:<strong> @Model["Hash"]</strong></div><div> Prevention Key:<strong> @Model["preventionKey"]</strong></div><div> Content Version:<strong> @Model["ContentVersion"]</strong></div></p></body> </html>
    PublisherChanged
    <html><body><p><div>Log Event:<strong> Trusted Signer changed automatically</strong></div> <p></p><div>Description:<strong> Hash trusted signer has changed</strong></div><div> Hash:<strong>@Model["Hash"]</strong></div><div> Previous Trusted Signer:<strong> @Model["OldPublisher"]</strong></div><div> New Trusted Signer:<strong> @Model["NewPublisher"]</strong></div><div> Server Name:<strong>@Model["esmHost"], @Model["EsmIp"]</strong></div><div>By User:<strong> @Model["user"]</strong></div></p></body></html>
    QuarantineFailed
    <html><body><p><div>Log Event:<strong> File Quarantine Failed</strong></div><p></p><div> Time:<strong> @Model.Time (UTC)</strong></div><div> File Name:<strong> @Model["fileName"]</strong></div> <div>Failure Reason:<strong> @Model["FailureReason"]</strong></div><div> Computer:<strong>@Model["host"]</strong></div><div> Agent Version:<strong> @Model["ProductVersion"]</strong></div><div> By User:<strong>@Model["user"]</strong></div></p> </body></html>
    QuarantineQuotaExceeded
    <html><body><p><div>Log Event:<strong> Quarantine Quota Exceeded</strong></div><p></p><div> Time:<strong> @Model.Time (UTC)</strong></div><div> File Name:<strong> @Model["fileName"]</strong></div> <div>Computer:<strong>@Model["host"]</strong><div> By User:<strong>@Model["user"]</strong></div></p> </body></html>
    QuarantineSucceeded
    <html><body><p><div>Log Event:<strong> File Quarantine Succeeded</strong></div><p></p><div> Time:<strong> @Model.Time (UTC)</strong></div><div> File Name:<strong> @Model["fileName"]</strong></div> <div>Computer:<strong>@Model["host"]</strong></div> <div>Agent Version:<strong> @Model["ProductVersion"]</strong></div></p></body> </html>
    ReportingServiceStartFailed
    <html><body><p><div>Log Event:<strong> Failed listening to Traps reporting service on @Model["host"]</strong></div><p></p><div> Time:<strong> @Model.Time (UTC)</strong></div><div> Computer:<strong> @Model["host"]</strong></div><div> Agent Version:<strong> @Model["ProductVersion"]</strong></div><div> Exception:<strong> @Model["msg"]</strong></div></p> </body></html>
    RestoreFailed
    <html><body><p><div>Log Event:<strong> File Restore Failed</strong></div><p></p><div> Time:<strong> @Model.Time (UTC)</strong></div><div> File Name:<strong> @Model["fileName"]</strong></div> <div>Failure Reason:<strong> @Model["FailureReason"]</strong></div><div> Computer:<strong>@Model["host"]</strong></div><div> Agent Version:<strong> @Model["ProductVersion"]</strong></div><div> By User:<strong>@Model["user"]</strong></div></p> </body></html>
    RestoreSucceeded
    <html><body><p><div>Log Event:<strong> File Restore Succeeded</strong></div><p></p><div> Time:<strong> @Model.Time (UTC)</strong></div><div> File Name:<strong> @Model["fileName"]</strong></div> <div>Computer:<strong>@Model["host"]</strong></div> <div>Agent Version:<strong> @Model["ProductVersion"]</strong></div><div> By User:<strong>@Model["user"]</strong></div></p> </body></html>
    RestrictionSettingsEdited
    <html><body><p><div>Log Event:<strong> Restrictions Settings Add/Edit</strong></div><p></p> <div>Description:<strong> Restrictions Settings in the ESM were Added/Edited</strong></div><div>Time:<strong> @Model.Time (UTC)</strong></div><div>By User:<strong> @Model["user"]</strong></div></p></body></html>
    RoleDeleted
    <html><body><p><div>Log Event:<strong> Role Deleted</strong></div><p></p><div>Time:<strong> @Model.Time (UTC)</strong></div><div> Role Name:<strong> @Model["Name"]</strong></div><div> By User:<strong> @Model["user"]</strong></div></p> </body></html>
    RoleEdited
    <html><body><p><div>Log Event:<strong> Role Added/Edited</strong></div><p></p><div> Time:<strong> @Model.Time (UTC)</strong></div><div> Role Name:<strong> @Model.Data.Name</strong></div> <div>By User:<strong> @Model["user"]</strong></div> </p></body></html>
    RoleStatusChanged
    <html><body><p><div>Log Event:<strong> Role Status Changed</strong></div><p></p><div> Time:<strong> @Model.Time (UTC)</strong></div><div> Role Name:<strong> @Model["Name"]</strong></div><div> Status:<strong> @Model["Status"]</strong></div><div> By User:<strong> @Model["user"]</strong></div></p> </body></html>
    RuleDeleted
    <html><body><p><div>Log Event:<strong> Rule Deleted</strong></div><p></p><div>Time:<strong> @Model.Time (UTC)</strong></div><div> Rule Name:<strong> @Model["Name"]</strong></div><div> Rule ID:<strong> @Model["id"]</strong></div><div> Rule Description:<strong> @Model["Description"]</strong></div><div> By User:<strong> @Model["user"]</strong></div></p> </body></html>
    RuleEdited
    <html><body><p><div>Log Event:<strong> Rule Added/Edited</strong></div><p></p><div> Time:<strong> @Model.Time (UTC)</strong></div><div> Rule Name:<strong> @Model.Data.Name</strong></div> <div>Rule ID:<strong> @Model.Data.Id</strong></div> <div>Rule Description:<strong> @Model.Data.Description</strong></div><div> By User:<strong> @Model["user"]</strong></div></p> </body></html>
    SendingLicenseToClient
    <html><body><p><div>Log Event:<strong> License Sent to Agent</strong></div><p></p><div> Time:<strong> @Model.Time (UTC)</strong></div><div> Computer:<strong> @Model["host"]</strong></div></p> </body></html>
    ServerContentRevertFailure
    <html><body><p><div>Log Event:<strong> Content version failed to revert to @Model["ContentVersion"]. Error: @Model["Error"]</strong></div><p></p><div> Time:<strong> @Model.Time (UTC)</strong></div><div> Server Name:<strong> @Model["esmHost"], @Model["EsmIp"]</strong></div><div>By User:<strong> @Model["user"]</strong></div></p></body></html>
    ServerContentRevertSuccess
    <html><body><p><div>Log Event:<strong> Content version was reverted to @Model["ContentVersion"] successfully.</strong></div> <p></p><div>Time:<strong> @Model.Time (UTC)</strong> </div><div>By User:<strong> @Model["user"]</strong> </div></p></body></html>
    ServerContentUpdateFailure
    <html><body><p><div>Log Event:<strong> Content version failed to update to @Model["ContentVersion"]. Error: @Model["Error"]</strong></div><p></p><div> Time:<strong> @Model.Time (UTC)</strong></div><div> Server Name:<strong>@Model["esmHost"], @Model["EsmIp"]</strong></div><div>By User:<strong> @Model["user"]</strong></div></p></body></html>
    ServerContentUpdateSuccess
    <html><body><p><div>Log Event:<strong> Content version was updated to @Model["ContentVersion"] successfully.</strong></div> <p></p><div>Time:<strong> @Model.Time (UTC)</strong> </div><div>Server Name:<strong>@Model["esmHost"], @Model["EsmIp"]</strong></div><div>By User:<strong> @Model["user"]</strong></div></p></body></html>
    ServerHeartbeat
    <html><body><p><div>Log Event:<strong> ESM Heartbeat</strong></div><p></p><div>Time:<strong> @Model.Time (UTC)</strong></div><div> Server Name:<strong> @Model["esmHost"], @Model["EsmIp"]</strong></div></p></body></html>
    ServiceAlive
    <html><body><p><div>Log Event:<strong> Agent Service Start</strong></div><p></p><div> Time:<strong> @Model.Time (UTC)</strong></div><div> Computer:<strong> @Model["host"]</strong></div><div> Agent Version:<strong> @Model["ProductVersion"]</strong></div></p></body> </html>
    ServiceStartFailed
    <html><body><p><div>Log Event:<strong> Agent Service Start Failed</strong></div><p></p><div> Time:<strong> @Model.Time (UTC)</strong></div><div> Computer:<strong> @Model["host"]</strong></div><div> Agent Version:<strong> @Model["ProductVersion"]</strong></div><div> Error:<strong> @Model["Error"]</strong></div></p> </body></html>
    ServiceStopped
    <html><body><p><div>Log Event:<strong> Agent Service Stopped</strong></div><p></p><div> Time:<strong> @Model.Time (UTC)</strong></div><div> Computer:<strong> @Model["host"]</strong></div><div> Agent Version:<strong> @Model["ProductVersion"]</strong></div></p></body> </html>
    ServiceWarning
    <html><body><p><div>Log Event:<strong> Agent Service Warning</strong></div><p></p><div> Time:<strong> @Model.Time (UTC)</strong></div><div> Computer:<strong> @Model["host"]</strong></div><div> Agent Version:<strong> @Model["ProductVersion"]</strong></div><div> Java sandbox file access to:<strong> @Model["TargetValue"]</strong></div></p></body> </html>
    SystemShutdown
    <html><body><p><div>Log Event:<strong> Agent Shutdown</strong></div><p></p><div> Time:<strong> @Model.Time (UTC)</strong></div><div> Computer:<strong> @Model["host"]</strong></div><div> Agent Version:<strong> @Model["ProductVersion"]</strong></div></p></body> </html>
    TechSupportFileStatus
    <html><body><p><div>Log Event:<strong> Tech Support File</strong></div><p></p><div> Description:<strong> Tech Support File Generation</strong><div> Time:<strong> @Model.Time (UTC)</strong></div></div> <div>Job:<strong> @Model["JobID"]</strong></div><div> Status:<strong> @Model["Status"]</strong></div><div> Server Name:<strong> @Model["esmHost"], @Model["EsmIp"]</strong></div></p></body></html>
    TrapsServiceStatusChange
    <html><body><p><div>Log Event:<strong> Agent Service Status Changed</strong></div><p></p> <div>Time:<strong> @Model.Time (UTC)</strong></div> <div>Computer:<strong> @Model["host"]</strong></div> <div>Agent Version:<strong> @Model["ProductVersion"]</strong></div><div> Previous Status:<strong> @Model["OldStatus"]</strong> </div><div>New Status:<strong> @Model["NewStatus"]</strong></div></p></body></html>
    UserDeleted
    <html><body><p><div>Log Event:<strong> User Deleted</strong></div><p></p><div>Time:<strong> @Model.Time (UTC)</strong></div><div> Deleted User Name:<strong> @Model["Name"]</strong> </div><div>By User:<strong> @Model["user"]</strong> </div></p></body></html>
    UserEdited
    <html><body><p><div>Log Event:<strong> User Added/Edited</strong></div><p></p><div> Time:<strong> @Model.Time (UTC)</strong></div><div> Added/Edited User Name:<strong> @Model.Data.Name</strong></div><div>By User:<strong> @Model["user"]</strong></div></p></body></html>
    UserLogin
    <html><body><p><div>Log Event:<strong> User Login</strong></div><p></p><div>Time:<strong> @Model.Time (UTC)</strong></div><div>User:<strong> @Model.Data.Username</strong></div></p></body></html>
    UserStatusChanged
    <html><body><p><div>Log Event:<strong> User Status Changed</strong></div><p></p><div> Time:<strong> @Model.Time (UTC)</strong></div><div> User Name:<strong> @Model["Name"]</strong></div><div> Status:<strong> @Model["Status"]</strong></div><div> By User:<strong> @Model["user"]</strong></div></p> </body></html>
    VerdictChangeAnyToMalware
    <html><body><p><div>Log Event:<strong> Verdict Changed - Any to Malware</strong></div><p> </p><div>Description:<strong> Hash Verdict has Changed to Malware</strong></div> <div>Hash:<strong> @Model["Hash"]</strong></div><div> Previous Verdict:<strong> @Model["OldVerdict"]</strong></div><div> New Verdict:<strong> @Model["NewVerdict"]</strong> </div></p></body></html>
    VerdictChangeMalwareToAny
    <html><body><p><div>Log Event:<strong> Verdict Changed - Malware to Any</strong></div><p> </p><div>Description:<strong> Hash Verdict has Changed from Malware.</strong></div> <div>Hash:<strong> @Model["Hash"]</strong></div><div> Awaiting to restore:<strong> @Model["QuarantineStatus"]</strong></div><div> Previous Verdict:<strong> @Model["OldVerdict"]</strong></div><div> New Verdict:<strong> @Model["NewVerdict"]</strong> </div></p></body></html>
    VerdictChangeNoconnectionToAny
    <html><body><p><div>Log Event:<strong> Verdict Changed - No connection to Any</strong></div> <p></p><div>Description:<strong> Hash Verdict has Changed from No connection</strong> </div><div>Hash:<strong> @Model["Hash"]</strong> </div><div>Previous Verdict:<strong> @Model["OldVerdict"]</strong></div><div> New Verdict:<strong> @Model["NewVerdict"]</strong> </div></p></body></html>
    VerdictChangeUnknownToAny
    <html><body><p><div>Log Event:<strong> Verdict Changed - Unknown to Any</strong></div><p> </p><div>Description:<strong> Hash Verdict has Changed from Unknown</strong></div> <div>Hash:<strong> @Model["Hash"]</strong></div><div> Previous Verdict:<strong> @Model["OldVerdict"]</strong></div><div> New Verdict:<strong> @Model["NewVerdict"]</strong> </div></p></body></html>
    VerdictChangeAwaitingAnalysisToAny
    <html><body><p><div>Log Event:<strong> Verdict Changed - Awaiting Analysis to Any</strong> </div><p></p><div>Description:<strong> Hash Verdict has Changed from Awaiting Analysis</strong></div><div>Hash:<strong> @Model["Hash"]</strong></div><div> Previous Verdict:<strong> @Model["OldVerdict"]</strong></div><div> New Verdict:<strong> @Model["NewVerdict"]</strong> </div></p></body></html>
    VerdictChange
    <html><body><p><div>Log Event:<strong> Verdict Changed - Any to Any</strong></div><p></p> <div>Description:<strong> Hash Verdict has Changed</strong></div><div> Hash:<strong> @Model["Hash"]</strong></div><div> Previous Verdict:<strong> @Model["OldVerdict"]</strong></div><div> New Verdict:<strong> @Model["NewVerdict"]</strong> </div></p></body></html>
    VerdictManualOverride
    <html><body><p><div>Log Event:<strong> Verdict Manual Override</strong></div><p></p><div> Description:<strong> Hash verdict overridden manually</strong></div><div> Hash:<strong> @Model["Hash"]</strong></div><div> Previous Verdict:<strong> @Model["OldVerdict"]</strong></div><div> New Verdict:<strong> @Model["NewVerdict"]</strong> </div><div>By User:<strong> @Model["user"]</strong> </div></p></body></html>
    VerdictRevertedToWildfire
    <html><body><p><div>Log Event:<strong> Verdict Reverted To WildFire</strong></div><p></p> <div>Description:<strong> Hash Verdict reverted to WildFire</strong></div><div> Hash:<strong> @Model["Hash"]</strong></div><div> Previous Verdict:<strong> @Model["OldVerdict"]</strong></div><div> New Verdict:<strong> @Model["NewVerdict"]</strong> </div><div>By User:<strong> @Model["user"]</strong> </div></p></body></html>
    WfCommunicationsStatusChanged
    <html><body><p><div>Log Event:<strong> WildFire Communications Status Changed</strong></div> <p></p><div>Time:<strong> @Model.Time (UTC)</strong> </div><div>Server Name:<strong> @Model["esmHost"], @Model["EsmIp"]</strong></div><div> ESM Version:<strong> @Model["ProductVersion"]</strong></div><div> Status:<strong> @Model["message"]</strong></div></p> </body></html>
    InstallationPackage
    <html><body><p><div>Log Event:<strong> Agent Package Created</strong></div><p></p><div> Description:<strong> @Model["OSType"] Agent Package was @Model["AgentPackageStatus"].</strong></div><div> Time:<strong> @Model.Time (UTC)</strong></div><div> Package name:<strong> @Model["AgentPackageName"]</strong></div><div> Agent Version:<strong> @Model["AgentPackageVersion"]</strong></div></p> </body></html>
    IncompatibleOs
    <html><body><p><div>Log Event:<strong> Traps is inactive due to @Model["IncompatibilityReason"]</strong></div><p></p> <div>Time:<strong> @Model.Time (UTC)</strong></div> <div>Computer:<strong>@Model["host"]</strong></div> <div>Agent Version:<strong> @Model["ProductVersion"]</strong></div></p></body> </html>
    RegistrationConflict
    <html><body><p><div>Log Event:<strong> Agent Registration Conflict Detected</strong></div> <p></p><div>Time:<strong> @Model.Time (UTC)</strong> </div><div>Server Name:<strong> @Model["esmHost"]</strong></div><div> Requested IP:<strong> @Model["RequestIP"]</strong> </div><div>Existing IP:<strong> @Model["AgentIp"]</strong></div></p></body></html>
    EsmCertValidationWarning
    <html><body><p><div>Log Event:<strong> Agent-ESM Authentication Warning</strong></div><p> </p><div>Time:<strong> @Model.Time (UTC)</strong> </div><div>Server Name:<strong> @Model["esmHost"]</strong></div><div>Agent:<strong> @Model["host"]</strong></div><div>Message:<strong> Agent @Model["host"] couldn't fully authenticate ESM @Model["esmHost"] using installed certificate.</strong></div></p></body></html>
    AutoContentUpdateAvailable
    <html><body><p><div>Log Event:<strong> A new Content Update (version @Model["ContentVersion"]) is Available.</strong> </div><p></p><div>Time:<strong> @Model.Time (UTC)</strong></div><div> Server Name:<strong>@Model["esmHost"], @Model["EsmIp"]</strong></div><div>By User:<strong> @Model["user"]</strong></div></p></body></html>
    AgentMigration
    <html><body><p><div>Log Event:<strong> Agent has migrated to Traps cloud services</strong> </div><p></p><div>Time:<strong> @Model.Time (UTC)</strong></div><div> Computer:<strong>@Model["AgentIp"]</strong></div> <div>Agent Version:<strong> @Model["ProductVersion"]</strong></div></p></body> </html>

    © 2024 Palo Alto Networks, Inc. All rights reserved.