Docs for schema item EntityItemAuditType in Open Vulnerability and Assessment Language (OVAL®)

Documentation for Open Vulnerability and Assessment Language (OVAL®)

Definition Type:	ComplexType
Name:	EntityItemAuditType
Namespace:	http://oval.mitre.org/XMLSchema/oval-system-characteristics-5#windows
Type:	oval-sc:EntityItemStringType
Containing Schema:	windows-system-characteristics-schema.xsd
Abstract
Documentation:	The EntityItemAuditType restricts a string value to a specific set of values: AUDIT_NONE, AUDIT_SUCCESS, AUDIT_FAILURE, and AUDIT_SUCCESS_FAILURE. These values describe which audit records should be generated. The empty string is also allowed to support empty emlement associated with error conditions.

XSD Schema Diagram:

XSD Diagram of EntityItemAuditType in schema windows-system-characteristics-schema_xsd (Open Vulnerability and Assessment Language (OVAL®))

XSD Schema Code:

<xsd:complexType name="EntityItemAuditType">
    <xsd:annotation>
        <xsd:documentation>The EntityItemAuditType restricts a string value to a specific set of values: AUDIT_NONE, AUDIT_SUCCESS, AUDIT_FAILURE, and AUDIT_SUCCESS_FAILURE. These values describe which audit records should be generated. The empty string is also allowed to support empty emlement associated with error conditions.</xsd:documentation>
    </xsd:annotation>
    <xsd:simpleContent>
        <xsd:restriction base="oval-sc:EntityItemStringType">
            <xsd:enumeration value="AUDIT_FAILURE" />
            <xsd:enumeration value="AUDIT_NONE" />
            <xsd:enumeration value="AUDIT_SUCCESS" />
            <xsd:enumeration value="AUDIT_SUCCESS_FAILURE" />
            <xsd:enumeration value="">
                <xsd:annotation>
                    <xsd:documentation>The empty string value is permitted here to allow for detailed error reporting.</xsd:documentation>
                </xsd:annotation>
            </xsd:enumeration>
        </xsd:restriction>
    </xsd:simpleContent>
</xsd:complexType>

Child Attributes:

Name	Type	Default Value	Use
datatype	oval-sc:datatype	string	Optional
mask	oval-sc:mask	false	Optional
status	oval-sc:status	exists	Optional

Facets:

Facet	Value
Enumeration	AUDIT_FAILURE
Enumeration	AUDIT_NONE
Enumeration	AUDIT_SUCCESS
Enumeration	AUDIT_SUCCESS_FAILURE
Enumeration

Derivation Tree:

oval-sc:EntityItemBaseType
- oval-sc:EntityItemStringType
  - EntityItemAuditType

References:

win-sc:access_system_security, win-sc:access_system_security, win-sc:account_lockout, win-sc:account_logon, win-sc:account_management, win-sc:application_generated, win-sc:application_group_management, win-sc:audit_policy_change, win-sc:authentication_policy_change, win-sc:authorization_policy_change, win-sc:certification_services, win-sc:computer_account_management, win-sc:credential_validation, win-sc:detailed_directory_service_replication, win-sc:detailed_tracking, win-sc:directory_service_access, win-sc:directory_service_access, win-sc:directory_service_changes, win-sc:directory_service_replication, win-sc:distribution_group_management, win-sc:dpapi_activity, win-sc:file_append_data, win-sc:file_delete_child, win-sc:file_execute, win-sc:file_read_attributes, win-sc:file_read_data, win-sc:file_read_ea, win-sc:file_share, win-sc:file_system, win-sc:file_write_attributes, win-sc:file_write_data, win-sc:file_write_ea, win-sc:filtering_platform_connection, win-sc:filtering_platform_packet_drop, win-sc:filtering_platform_policy_change, win-sc:generic_all, win-sc:generic_all, win-sc:generic_execute, win-sc:generic_execute, win-sc:generic_read, win-sc:generic_read, win-sc:generic_write, win-sc:generic_write, win-sc:handle_manipulation, win-sc:ipsec_driver, win-sc:ipsec_extended_mode, win-sc:ipsec_main_mode, win-sc:ipsec_quick_mode, win-sc:kerberos_ticket_events, win-sc:kernel_object, win-sc:key_create_link, win-sc:key_create_sub_key, win-sc:key_enumerate_sub_keys, win-sc:key_notify, win-sc:key_query_value, win-sc:key_set_value, win-sc:key_wow64_32key, win-sc:key_wow64_64key, win-sc:key_wow64_res, win-sc:logoff, win-sc:logon, win-sc:logon, win-sc:mpssvc_rule_level_policy_change, win-sc:non_sensitive_privilege_use, win-sc:object_access, win-sc:other_account_logon_events, win-sc:other_account_management_events, win-sc:other_logon_logoff_events, win-sc:other_object_access_events, win-sc:other_policy_change_events, win-sc:other_privilege_use_events, win-sc:other_system_events, win-sc:policy_change, win-sc:privilege_use, win-sc:process_creation, win-sc:process_termination, win-sc:registry, win-sc:rpc_events, win-sc:sam, win-sc:security_group_management, win-sc:security_state_change, win-sc:security_system_extension, win-sc:sensitive_privilege_use, win-sc:special_logon, win-sc:standard_delete, win-sc:standard_delete, win-sc:standard_read_control, win-sc:standard_read_control, win-sc:standard_synchronize, win-sc:standard_synchronize, win-sc:standard_write_dac, win-sc:standard_write_dac, win-sc:standard_write_owner win-sc:standard_write_owner, win-sc:system, win-sc:system_integrity, win-sc:user_account_management,

Documentation for Open Vulnerability and Assessment Language (OVAL®)

Generated using Liquid Studio - Developer Bundle 21.0.0.0