CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-08 10:12:53 +01:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #7153 from Security-Onion-Solutions/fix/dtc_event_mappings

Browse Source 
Add 'event.created' and 'event.ingested' keyword mapping
This commit is contained in:
weslambert
2022-02-08 16:36:49 -05:00
committed by GitHub
parent c216457a3e 9b841fd872
commit 380fa7d0c8
1 changed files with 12 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

14
salt/elasticsearch/templates/component/so/dtc-event-mappings
View File

@@ -30,7 +30,12 @@
"type": "keyword" "type": "keyword"
}, },
"created": { "created": {
"type": "date" "type": "date",
"fields": {
"keyword": {
"type": "keyword"
}
}
}, },
"dataset": { "dataset": {
"ignore_above": 1024, "ignore_above": 1024,
@@ -56,7 +61,12 @@
"type": "keyword" "type": "keyword"
}, },
"ingested": { "ingested": {
"type": "date" "type": "date",
"fields": {
"keyword": {
"type": "keyword"
}
}
}, },
"kind": { "kind": {
"ignore_above": 1024, "ignore_above": 1024,