Policy

Top Level Fieldset: True

This field set contains information about the policy related to an event.

Policy Fields

policy.category

Required Field: False
Type: STRING
Example: posture
Detection Supported Field: True

Indicates the high-level categorization of a policy.

policy.description

Required Field: False
Type: STRING
Example: Multi-factor Sign-On Policy for admin users.
Detection Supported Field: True

Brief explanation of the purpose of the policy.

policy.id

Required Field: False
Type: STRING
Example: 00pd30ftwhug3OBzP5d7
Detection Supported Field: True

Unique ID of the policy.

policy.name

Required Field: False
Type: STRING
Example: Password
Detection Supported Field: True

Name of the policy.

policy.outcome

Required Field: False
Type: STRING
Example: NoAction
Detection Supported Field: True

Outcome of a policy evaluation on an audited action.