Auto-Generated Documentation
This set of documentation is automatically generated from source, and will help ensure any change to functionality will always be documented and available on release.
Cloud¶
Fields related to the cloud or infrastructure the events are coming from.
| Field | Type | Description | Required | Default |
|---|---|---|---|---|
| account | Account | Cloud account information. | Optional Deprecated - Instead of using this more general field, use a platform-specific field. For more information, see Disambiguated Cloud Ontology | None |
| availability_zone | Keyword | Availability zone in which this host, resource, or service is located. | Optional Deprecated - Instead of using this more general field, use a platform-specific field. For more information, see Disambiguated Cloud Ontology | None |
| instance | Instance | Instance information. | Optional | None |
| machine | Machine | Machine information. | Optional | None |
| project | Project | Project information. | Optional Deprecated - Instead of using this more general field, use a platform-specific field. For more information, see Disambiguated Cloud Ontology | None |
| provider | Keyword | Name of the cloud provider. Example values are aws, azure, gcp, or digitalocean. | Optional | None |
| region | Keyword | Region in which this host, resource, or service is located. | Optional | None |
| service | Service | Service information. | Optional | None |
| tenant_id | Keyword | The tenant id associated with this alert. | Optional Deprecated - Instead of using this more general field, use a platform-specific field. For more information, see Disambiguated Cloud Ontology | None |