Cisco
Login
Search
Software Secure Workload
Activity Configure

Configure and Manage Connectors for Secure Workload Connectors for Alert Notifications Syslog Connector Syslog Severity Mapping

Last updated: Jun 09, 2025

Syslog Severity Mapping

The following table shows the default severity mapping for Secure Workload alerts on Syslog.

Secure Workload Alerts Severity

Syslog Severity

LOW

LOG_DEBUG

MEDIUM

LOG_WARNING

HIGH

LOG_ERR

CRITICAL

LOG_CRIT

IMMEDIATE ACTION

LOG_EMERG

This setting can be modified using Severity Mapping configuration under Syslog Connector. You can choose any corresponding Syslog priority for each Secure Workload Alert Severity and change the Severity Mapping. For more information, see Syslog Severity Mapping Configuration .

Parameter Name

Dropdown of mappings

IMMEDIATE_ACTION

  • Emergency

  • Alert

  • Critical

  • Error

  • Warning

  • Notice

  • Informational

  • Debug

CRITICAL

HIGH

MEDIUM

LOW

Sample config for Syslog Severity Mapping.
Figure 1: Sample config for Syslog Severity Mapping.
Previous topic Syslog Connector Next topic Limits