Solar Winds Orion sample event message

Use this sample event message to verify a successful integration with IBM QRadar.

Important: Due to formatting issues, paste the message format into a text editor and then remove any carriage return or line feed characters.

Solar Winds Orion sample message when you use the Syslog protocol

The following sample event message shows that a network device is up.

1.3.6.1.2.1.1.3.0=0:00:00.00	1.3.6.1.6.3.1.1.4.1.0=1.3.6.1.4.1.11307.10	1.3.6.1.6.3.1.1.4.3.0=1.3.6.1.4.1.11307	1.3.6.1.4.1.11307.10.2=host.domain.test	1.3.6.1.4.1.11307.10.3=10.64.1.10	1.3.6.1.4.1.11307.10.4=1953	1.3.6.1.4.1.11307.10.5=host.domain.test	1.3.6.1.4.1.11307.10.6=Node	1.3.6.1.4.1.11307.10.7=1953	1.3.6.1.4.1.11307.10.1=	1.3.6.1.4.1.11307.10.8=Network Device is down host.domain.test is Up.
Table 1. Hghlighted values in the Solar Winds Orion sample event
QRadar field name Highlighted values in the event payload
Event ID Network Device is down host.domain.test is Up
Source IP 10.64.1.10