Okta
The okta
log type records Okta events generated from a range of actions, such as downloading an export file, requesting application access, or revoking privileges.
The following code snippet contains all the raw_field
and ecs
mappings for this log type:
"mappings": [
{
"raw_field":"eventtype",
"ecs":"okta.event_type"
},
{
"raw_field":"displaymessage",
"ecs":"okta.display_message"
}
]