Endpoint info
- Datamodel:
UXM_Endpoint
Endpoint nodes
- Index:
`getIndexConfidentialData`
- Source type:
monitor.endpoint.info
- KVStore:
ux_nodes
(Updated every 5 minutes via script maintain_endpoints.py) - Dashboards visualizing data:
- Collected via Endpoint monitor
- Collected: On start and daily
Field | Metric Store | Description | Data Type | Unit | Example | Available on platforms |
---|---|---|---|---|---|---|
version | Version of UXM Desktop agent | String | 2021.09.28 | Windows, Linux, MacOS | ||
domain | String | testdomain.com | ||||
hostname | String | DKTESTPC1 | Windows, Linux, MacOS | |||
type | laptop, desktop, robot | String | laptop | |||
cpu_cores | Number | 2 | Windows, Linux, MacOS | |||
cpu_sockets | Number | 1 | Windows, Linux, MacOS | |||
cpu_logical_processors | Number | 4 | Windows, Linux, MacOS | |||
cpu_generation | String | Intel64 Family 6 Model 142 Stepping 9 | Windows | |||
cpu_model | String |
Intel Core i5 7200U, Intel Xeon |
Windows, Linux, MacOS | |||
cpu_clock_frequency | String | MHz | 2500 | Windows, Linux, MacOS | ||
cpu_load | Move: Send at interval | Float | % | 55.4% | ||
memory_mb | Number | MB | 24000 MB | |||
manufacturer | String | Dell Inc. | Windows | |||
model | String | Latitude 5480 | Windows | |||
os | String |
Windows 10 Pro, Ubuntu 18.04, Mac OS X Big sur |
Windows, Linux, Mac OS | |||
os_version | String |
Windows 7: Windows 10: 19042 Windows 11: 22000+ Linux (Kernel version): 5.4.0-1053-gcp Mac OS X: 11.2.1 |
Windows, Linux, Mac OS | |||
os_codename | Friendly code name of the installed OS build. | String |
Windows 10: 20H2 Linux Ubuntu: bionic Mac OS X: Big Sur |
Windows, Linux, Mac OS | ||
product_identifying_number | Serial number or service code | String | 2C703M2 | Windows | ||
product_name | String | Latitude 5480 | Windows | |||
product_uuid | String | 4C4C4544-0043-3710-8030-B2C04F334D00 | Windows | |||
last_boottime | Number | Timestamp | Windows | |||
battery_wear_level | Float | % | 80% | Windows | ||
batteries | Number | 1 | Windows | |||
powerplan | Active power plan | String | Dell | Windows | ||
powerplan_description | Active power plan description (Localised language) | String | Automatically balances performance with energy consumption on capable hardware. | Windows | ||
powerplan_instance_id | Active power plan instance ID | String | 49ef8fc0-bb7f-488e-b6a0-f1fc77ec649b | Windows | ||
windows_stability_index | Number | Windows |
Disk info
Network info
Installed programs
- Datamodel:
UXM_Desktop
Programs_Installed
- Index:
`getIndexSessionData`
- Source type:
monitor.endpoint.programs_installed
- Dashboards visualizing data:
endpoint_details?form.link=programs
- Collected via Endpoint monitor
- Collected: On start and daily
Field | Display name | Description | Data Type | Unit | Example | Available on platforms |
---|---|---|---|---|---|---|
host |
Endpoint node application is installed on, lookup hostname and info via ux_nodes_lookup. | lookup ux_nodes_lookup lookup_key AS host OUTPUT hostname, last_registration, internal_ip, country, memory_mb, cpu_cores, tags, os, enabled |
String | 5d05ad82d053082a69343a52 | All | ||
source | String | agent.programs.installed | All | |||
sourcetype | String | uxm:json | All | |||
timestamp_utc | UTC Timestamp from when data was collected. (Also stored in Splunk _time field) | 2019-12-19T10:08:27 | All | |||
guid | GUID | String | Google Chrome | Windows | ||
install_date | Install Date | 20210203 | Windows | |||
install_source | Install Source | String | Windows | |||
install_location | Install Location | String | C:\Program Files\Google\Chrome\Application | Windows | ||
is_64_bit | Is 64 bit |
0 = Installed under Wow6432 1 = Is 64 bit |
String | 0 | Windows | |
language | Language | String | 0 | Windows | ||
major | Major | Windows | ||||
major_version_parsed | Major version (Normalized) | Windows | ||||
minor | Minor | Windows | ||||
name | Name | String | Google Chrome | Windows, Linux, MacOS | ||
name_parsed | Name (Normalized) | String | Google Chrome | Windows, Linux, MacOS | ||
publisher | Publisher | String | Google LLC | Windows | ||
version | Version | String | 88.0.4324.146 | Windows, Linux, MacOS | ||
windows_installer | Is Windows Installer | Number | 0 | Windows |