Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Cherry-pick #15236 to 7.x: User/Group Management Dashboards #16967

Merged
merged 1 commit into from
Mar 13, 2020

Conversation

andrewkroh
Copy link
Member

@andrewkroh andrewkroh commented Mar 11, 2020

Cherry-pick of PR #15236 to 7.x branch. Original message:

User and Group Management Events Dashboards

Screenshot_2019-12-20  winlogbeat  User Management Events - Kibana
Screenshot_2019-12-20  winlogbeat  Group Management Events - Kibana

Add dashboards to the Winlogbeat Security module for visualizing User Management events
and Group Management events. There are two versions of each dashboard - one with and without TSVB (time series visual builder) visualizations.

This updates the Winlogbeat build to include the dashboards from the module directories.

Add it adds winlog.event_data.MemberName to the fields.yml because it's used in the user
management dashboard and should be in the fields.yml so the dashboards load without error.

Co-authored-by: Andrew Kroh <[email protected]>
(cherry picked from commit d866824)
@elasticmachine
Copy link
Collaborator

Pinging @elastic/siem (Team:SIEM)

Copy link
Contributor

@leehinman leehinman left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@andrewkroh andrewkroh merged commit aac538e into elastic:7.x Mar 13, 2020
@andrewkroh andrewkroh deleted the backport_15236_7.x branch January 14, 2022 14:09
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
Development

Successfully merging this pull request may close these issues.

4 participants