CIM field change report
Learn about the CIM field changes between the latest version of the Splunk Add-on for Amazon Web Services and version 7.6.0.
Summary of changes
- Sourcetypes with changes: 4
- Total deleted fields: 5
- Total modified fields: 14
- Total new fields: 25
Details
aws:cloudtrail
| Field |
Deleted |
Modified |
New |
Is CIM |
| action |
no |
yes |
yes |
yes |
| change_type |
no |
yes |
yes |
yes |
| eventtype |
no |
yes |
yes |
yes |
| object |
no |
yes |
yes |
yes |
| object_attrs |
no |
no |
yes |
yes |
| object_category |
no |
yes |
no |
yes |
| object_id |
yes |
yes |
yes |
yes |
| object_path |
no |
no |
yes |
yes |
| result |
no |
no |
yes |
yes |
| src_user |
no |
no |
yes |
yes |
| src_user_id |
no |
no |
yes |
yes |
| src_user_name |
no |
no |
yes |
yes |
| src_user_type |
no |
no |
yes |
yes |
| status |
no |
no |
yes |
yes |
| tag |
no |
yes |
yes |
yes |
| tag::eventtype |
no |
yes |
yes |
no |
| user |
no |
yes |
yes |
yes |
| user_name |
yes |
yes |
no |
yes |
| user_type |
no |
no |
yes |
yes |
aws:cloudwatch:guardduty
| Field |
Deleted |
Modified |
New |
Is CIM |
| dest_ip |
no |
no |
yes |
yes |
| dest_name |
yes |
no |
no |
yes |
| src_ip |
yes |
no |
no |
yes |
| src_name |
no |
no |
yes |
no |
aws:cloudwatchlogs:vpcflow
| Field |
Deleted |
Modified |
New |
Is CIM |
| region |
yes |
yes |
no |
no |
aws:elb:accesslogs
| Field |
Deleted |
Modified |
New |
Is CIM |
| ClientSrcIP |
no |
no |
yes |
no |
| ClientSrcPort |
no |
no |
yes |
no |
| RequestTargetIP |
no |
no |
yes |
no |
| RequestTargetPort |
no |
no |
yes |
no |
| dest |
no |
no |
yes |
yes |
| dest_port |
no |
no |
yes |
yes |
| src |
no |
yes |
no |
yes |
| src_ip |
no |
yes |
no |
yes |
| src_port |
no |
yes |
no |
yes |