Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Audit logging: phase 1 #54836

Closed
11 tasks done
kobelb opened this issue Jan 14, 2020 · 3 comments
Closed
11 tasks done

Audit logging: phase 1 #54836

kobelb opened this issue Jan 14, 2020 · 3 comments
Assignees
@thomheymann @jportner
Labels
enhancement New value added to drive a business result ReleaseStatus Item of high enough importance that it should be called out in release status meetings Team:Security Team focused on: Auth, Users, Roles, Spaces, Audit Logging, and more!

Comments

@kobelb
Copy link
Contributor

kobelb commented Jan 14, 2020
edited by legrego
Loading

Phase 1 as outlined in #52125

Completed

Phase 1 has completed. If all goes to plan, this will be available in the upcoming 7.11.0 release.

Tasks:
@kobelb kobelb added Team:Security Team focused on: Auth, Users, Roles, Spaces, Audit Logging, and more! enhancement New value added to drive a business result labels Jan 14, 2020
@elasticmachine
Copy link
Contributor

Pinging @elastic/kibana-security (Team:Security)

@legrego legrego assigned thomheymann and unassigned legrego Jun 24, 2020
@jportner jportner mentioned this issue Jul 1, 2020
Closed
12 tasks
@legrego
Copy link
Member

legrego commented Jul 6, 2020
edited
Loading

We met with @s-nel today to ensure that ESS could ingest our audit logs. It sounds like we "just" need to update Kibana's filebeat module to accommodate the new audit logs that we write.

Additionally, we will want to make sure that the fields we write to within the ECS format don't collide with any fields that ESS itself is expecting to write to:

service.name
service.id
service.node.name
service.version
service.type
cloud.availability_zone
cloud.region

@jportner jportner mentioned this issue Aug 13, 2020
Closed
@stacey-gammon stacey-gammon added the ReleaseStatus Item of high enough importance that it should be called out in release status meetings label Sep 17, 2020
@tbragin tbragin mentioned this issue Oct 18, 2020
Closed
@legrego
Copy link
Member

legrego commented Dec 17, 2020

Work on Phase 1 of audit logging has completed. If all goes to plan, this will be available in the upcoming 7.11.0 release.

@legrego legrego closed this as completed Dec 17, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@thomheymann thomheymann

@jportner jportner

Labels
enhancement New value added to drive a business result ReleaseStatus Item of high enough importance that it should be called out in release status meetings Team:Security Team focused on: Auth, Users, Roles, Spaces, Audit Logging, and more!
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
6 participants
@thomheymann @kobelb @legrego @jportner @elasticmachine @stacey-gammon