Understanding Event ID Information in Logged Output

This section explains the event information that is displayed when logging is enabled.

The following displays a sample output for an event that was logged.

2011-Dec-11+5:18:41.993 [cli 30005 info] [8/0/609 cli:8000609 _commands_cli.c:1290] [software internal system] CLI session ended for Security Administrator admin on device /dev/pts/2 
The following table describes the elements of contained in the sample output.
Event Element Descriptions
Element Description
2011-Dec-11+5:18:41.993 Date/Timestamp indicating when the event was generated
[cli 30005 info]
Information about the event including:
  • The facility the event belongs to
  • The event ID
  • The event's severity level

In this example, the event belongs to the CLI facility, has an ID of 3005, and a severity level of "info".

[8/0/609 cli:8000609 _commands_cli.c:1290] Information about the specific CLI instance.
[software internal system] Indicates that the event was generated because of system operation.
CLI session ended for Security Administrator admin on device /dev/pts/2 The event's details. Event details may, or may not include variables that are specific to the occurrence of the event.