APC StruxureWare¶
APC Stuxerware¶
About¶
Manage your APC devices from a single system by forwarding SNMP traps (events) to your preferred enterprise management system.
Product Details¶
Provide product details here for the following categories <-- remove this line
Vendor URL: StruxureWare Data Center Expert Web Services API
Product Type: APC device monitoring
Product Tier: Tier III
Integration Method: Syslog
Parser Details¶
Fill in the following fields for parser details
Log Format: Syslog
Expected Normalization Rate: TBD%
Data Label: APC_STRUXUREWARE
UDM Fields (list of all UDM fields leveraged in the Parser):
| Log File Field | UDM Field |
|---|---|
| "STRUXUREWARE" | metadata.product_name |
| "APC" | metadata.vendor_name |
| observer hostname | observer.hostname |
| observer ip | observer.ip |
| sourceAddress | principal.asset.ip |
| sourceAddress | principal.ip |
| event summary | security_result.summary |
Product Event Types¶
| Event | UDM Event Classification |
|---|---|
| All Events | GENERIC_EVENT |
Log Sample¶
<46>Mar 7 15:11:26 hostname1 Detected an unauthorized user attempting to access the SNMP interface from 10.10.10.10 0x0004
Sample Parsing¶
metadata.event_timestamp = "2022-03-07T15:11:26Z"
metadata.event_type = "GENERIC_EVENT"
metadata.vendor_name = "APC"
metadata.product_name = "STRUXUREWARE"
principal.ip = "10.10.10.10"
principal.asset.ip = "10.10.10.10"
observer.hostname = "hostname1"
security_result.summary" = Detected an unauthorized user attempting to access the SNMP interface"
Parser Alerting¶
This product currently does not have any Parser-based Alerting
Rules¶
Coming Soon