Skip to content

Commit

Permalink
Changed the logic so it would not skip event types that hadn't been v…
Browse files Browse the repository at this point in the history 
…eted.
  • Loading branch information
@kcantrel
kcantrel committed Nov 7, 2024
1 parent bc774c6 commit 382b164
Showing 1 changed file with 1 addition and 3 deletions.
4 changes: 1 addition & 3 deletions Monitoring/ingest_nas_audit_logs_into_cloudwatch/ingest_audit_log.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -186,10 +186,8 @@ def createCWEvent(event):
str += ", InformationSet=Null"
else:
str += f", InformationSet={data['#text']}"
elif data['@Name'] in ['ObjectType', 'WriteOffset', 'WriteCount', 'NewSD', 'OldSD', 'SubjectUserIsLocal', 'OldPath', 'NewPath', 'OldRotateLimit', 'NewRotateLimit', 'OldLogFormat', 'NewLogFormat', 'OldRetentionDuration', 'NewRetentionDuration', 'AuditGuarantee', 'OldDestinationPath', 'NewDestinationPath']: # These don't require special handling.
else: # Assume the rest of the fields don't need special handling.
str += f", {data['@Name']}={data['#text']}"
else:
print(f"Unknown data type: {data['@Name']}")

return {'timestamp': t, 'message': str}

Expand Down

0 comments on commit 382b164

Please sign in to comment.