Cisco Cisco Security Manager 4.4 Guia De Especificaciones
Cisco Security Manager 4.4 API Specification (Version 1.1)
OL- 29074-01
Page 140
4.1.2.3 Syslog XML Event Notifications
If the client has registered for syslog event forwarding using the SyslogServer option all events will be forwarded to
the registered destination IP and port number. The content of the syslog message may be transmitted in XML or
PlainText depending on the registration parameter specified by the client. If XML format is chosen the event
message will follow the schema as defined below.
the registered destination IP and port number. The content of the syslog message may be transmitted in XML or
PlainText depending on the registration parameter specified by the client. If XML format is chosen the event
message will follow the schema as defined below.
Following is an example of a configuration change notification:
Figure 90: Configuration Change Notification Example
The above event notification is sent by the server to the registered syslog listener and is based on the following
elements and attributes.
elements and attributes.
Table 76: ConfigChangeEvent Data Element Descriptions
Element Name
Definition
configChangeEvent
Root element indicating the CSM specific configuration
change event notification.
change event notification.
configChangeEvent.eventType
Indicates this message is a syslog message
configChangeEvent.eventCategory
Indicates the event category which is configChange
configChangeEvent.subscriptionId
The original subscription ID used by the client that is now
“echoed” back.
“echoed” back.
configChangeEvent.time
The time this event was generated.
configChangeEvent.content
Any additional message associated with the configuration
change.
change.
configChangeEvent.srcIP
The IP address of the device that was changed
configChangeEvent.srcGID
The GID of the device that was changed
configChangeEvent.srcDns
The DNS name of the device that was changed (if any).
configChangeEvent.srcOSType
Indicates the device type ASA, FWSM, IOS, PIX.
<
n:configChangeEvent
xmlns:n
="
csm
"
xmlns:xsi
="
http://www.w3.org/2001/XMLSchema-instance
"
xsi:schemaLocation
="
events.xsd
">
<
eventType
>
syslog
</
eventType
>
<
eventCategory
>
configChange
</
eventCategory
>
<
time
>
1697-02-01T00:00:00Z
</
time
>
<
content
>
this is a syslog event
</
content
>
<
srcIP
>
12.1.1.1
</
srcIP
>
<
srcGID
>
00000000-0000-0000-0000-000000000890
</
srcGID
>
<
srcDns
>
cisco.com
</
srcDns
>
<
srcOSType
>
asa
</
srcOSType
>
<
deploymentType
>
Device
</
deploymentType
>
<
updateType
>
NO_OOB
</
updateType
>
</
n:configChangeEvent
>