Microsoft DHCP Server sample event message
Use this sample event message to verify a successful integration with IBM® QRadar®.
Important: Due to formatting issues, paste the message format into a text editor and
then remove any carriage return or line feed characters.
Microsoft DHCP Server sample message when you use the Syslog protocol
The following sample event message shows that Microsoft DHCP requested a DNS update to the named DNS server.
SourceIp=10.168.41.1 AgentLogFile=DhcpSrvLog-Mar AgentProtocol=WindowsDHCP ID de s=30 ceso Significado=04/23/19| QRadar field name | Highlighted values in the event payload |
|---|---|
| Event ID | 30 |
| Event Category | MicrosoftDHCP |
| Source IP | 10.168.41.1 |