Action log generic entries

Different levels and types of information are logged when you enable action logs and the system monitoring. Regardless of level and type, each of the log entries share the generic information described in this topic.

Log entry Description Example
logged_time The time the event was logged, in the format YYYY-MM-DDTHH:MM:SS:mic+rosc. 2017-03-18T09:36:12.739+0100
machine The IP address of the computer that performed the logging. 10.100.21.230
user_name The name of the authenticated user that performed the logged action. JDOE
original_time The time the logged event was originally created, in the format YYYY-MM-DDTHH:MM:SS:mic+rosc. This time might differ from the logged time, because it can take time for the log event to be written. 2017-03-18T09:36:12,733+0100
original_ip

The IP address from where the call originates. It can be a proxy.

10.98.25.189
category The category of the event. See Action log categories for a complete list. analysis_wp
action The action performed. For example, change_passwd. set_page
success

Reports whether the operation succeeded.

true
session_id A unique ID for the session. 1b15369d63bbed3a64b576b29d0a34a26f2871b8
service_instance_id A unique ID for the service instance. This value applies only for the categories with the suffix _wp (Web Player). It is listed as arg5. bwHPZisVZUeE_Nxj5ybYn-0414411f61_jf2
Related concepts