Lookout Product Documentation

Find answers about using and optimizing Lookout products.

Mobile Endpoint Security

Mobile Endpoint Security Contents

MES Console

Small and Medium Business Solutions (SMB)

MDMs

SIEM Integrations

QRadar Integration

Mapping Lookout Events to QRadar LEEF Fields

Event Categorization

MES APIs

Event Categorization

In this new version, events are categorized in a more granular method so as to provide the most useful information to QRadar.

QRadar groups events based on the EventID and cat fields. Lookout Mobile Risk API events come in three high level categories THREAT, DEVICE, and AUDIT. Each of these categories uses a different method to populate the EventID and cat fields. Please see the following tables for explanations of how the cat field is populated for each event type.

Last updated: November 20, 2024

lookout-footer

© 2024 Lookout, Inc. LOOKOUT®, the Lookout Shield Design®, LOOKOUT with Shield Design® and the Lookout multi-color/multi-shaded Wingspan Design® are registered trademarks of Lookout, Inc. in the United States and other countries. DAY OF SHECURITY®, LOOKOUT MOBILE SECURITY®, and POWERED BY LOOKOUT® are registered trademarks of Lookout, Inc. in the United States. Lookout, Inc. maintains common law trademark rights in EVERYTHING IS OK, PROTECTED BY LOOKOUT, CIPHERCLOUD, and the 4 Bar Shield Design.