| AccountApplicationId |
The application ID associated with the storage access |
String |
| AccountObjectId |
The unique identifier of the object making the storage access |
String |
| AccountTenantId |
The unique identifier of the Azure tenant |
String |
| AccountType |
The Account type used |
String |
| AccountUpn |
The user principal name of the accessing user |
String |
| ActionType |
Type of action (aggragated logs) |
String |
| AdditionalFields |
Additional information about the entity or event |
Object |
| AnonymousSuccessfulOperations |
The count of successful anonymous operations |
Int64 |
| AuthenticationType |
The authentication method used to access the storage (e.g., AccountKey, SAS, Oauth) |
String |
| AzureResourceId |
The Azure Resource ID of the storage account |
String |
| DataAggregationEndTime |
The end time during which the data was aggregated |
DateTime |
| DataAggregationStartTime |
The start time during which the data was aggregated |
DateTime |
| DataSource |
The source of the aggregated logs |
String |
| DistinctGetOperations |
The count of distinct GET operations performed |
Int64 |
| FailedOperationsCount |
The count of failed storage operations |
Int64 |
| HasAnonymousResourceNotFoundFailures |
Indicates whether anonymous resource not found failures occurred |
Boolean |
| IPAddress |
The IP address from which the storage was accessed |
String |
| Location |
The location of the storage account (region) |
String |
| Md5Hashes |
A list of MD5 hash reputations for the accessed resources |
Object |
| OperationNamesList |
A list of storage operations performed (e.g., CreateContainer, DeleteContainer) |
Object |
| OperationsCount |
The total number of storage operations performed |
Int64 |
| ReportId |
Guid to identify the record in the specific table |
String |
| ResourceGroup |
Name of the resource group where the storage account resides |
String |
| ServiceType |
Specifies the type of storage service (e.g., Blob, ADLS Gen2, Files.REST, Files.SMB) |
String |
| SourceSystem |
|
String |
| StorageAccount |
The identifier for the storage account |
String |
| StorageContainer |
The identifier for the storage container |
String |
| StorageFileShare |
The identifier for the storage file share |
String |
| SubscriptionId |
Unique identifier assigned to the Azure subscription |
String |
| SuccessfulOperationsCount |
The count of successful storage operations |
Int64 |
| SuccessfulReadOperations |
The count of successful read operations |
Int64 |
| TenantId |
|
String |
| TimeGenerated |
|
DateTime |
| Timestamp |
Date and time when the record was generated |
DateTime |
| TotalResponseLength |
The total response length of all GET operations during the aggregation period |
Int64 |
| Type |
|
String |
| UserAgentHeader |
Details of the user agent accessing the storage (e.g., browser or application) |
String |