NCBMSecurityDefenderLogs

Security log events on Nexus Baremetal Machines to monitor and detect user access to the system.

Table attributes

Attribute	Value
Resource types	microsoft.networkcloud/baremetalmachines
Categories	Azure Resources, Security
Solutions	LogManagement
Basic log	Yes
Ingestion-time transformation	No
Sample Queries	-

Columns

Column	Type	Description
_BilledSize	real	The record size in bytes
ClusterManagerName	string	Name of the ClusterManager managing the Nexus cluster.
ClusterName	string	Name of the on-prem Nexus cluster.
ComponentName	string	Name of the defender component managing the Nexus cluster.
ComponentVersion	string	Version of the defender component managing the Nexus cluster.
ContainerName	string	Name of the container generating the log for the Nexus cluster.
_IsBillable	string	Specifies whether ingesting the data is billable. When _IsBillable is false ingestion isn't billed to your Azure account
Location	string	Location of the Nexus Baremetal machine.
LogType	string	Type of defender log E.g. Trace, Heartbeat.
Message	string	Syslog message generated by the Baremetal machine.
NamespaceName	string	Namespace where the pod is running in the Nexus cluster.
Node	string	Host name of the Baremetal Machine.
PodName	string	Pod name generating the log in the Nexus cluster.
_ResourceId	string	A unique identifier for the resource that the record is associated with
Severity	string	Severity of the log record. E.g. Info, Warning, Critical, Error, Notice, Debug.
SourceSystem	string	The type of agent the event was collected by. For example, OpsManager for Windows agent, either direct connect or Operations Manager, Linux for all Linux agents, or Azure for Azure Diagnostics
_SubscriptionId	string	A unique identifier for the subscription that the record is associated with
TenantId	string	The Log Analytics workspace ID
TimeGenerated	datetime	Timestamp (UTC) when the log was generated.
Type	string	The name of the table