Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Milestone 1] Update latest findings index and privileges in elasticsearch #110243

Open
2 tasks
opauloh opened this issue Jun 27, 2024 · 0 comments
Open
2 tasks

[Milestone 1] Update latest findings index and privileges in elasticsearch #110243

opauloh opened this issue Jun 27, 2024 · 0 comments
Labels
Team:Cloud Security Meta label for Cloud Security team

Comments

@opauloh
Copy link

opauloh commented Jun 27, 2024
edited
Loading

Motivation

As part of the supporting namespace epic, we plan to migrate the latest findings index to the integrations repository with a new index name and an alias.

In order for an index and an alias to be created permissions are required by the kibana_system role:

  • create_index
  • delete_index
  • read
  • index
  • delete
  • manage
  • indices:admin/aliases
  • indices:admin/settings/update

index pattern: logs-*.*_latest_misconfigurations_cdr

Definition of done

  • The required permissions are added to the logs-*.*_latest_misconfigurations_cdr index pattern in Elasticsearch
  • Tests are updated to reflect the new added index

Out of scope

  • Removing the current findings-latest-default index will be done in a separate ticket

Related tasks/epics
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Team:Cloud Security Meta label for Cloud Security team
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@opauloh @elasticsearchmachine