Add mapping for event.severity_label

2025-12-09 18:52:52 +01:00 · 2023-06-05 21:19:37 +00:00
parent 905bc564fc
commit 495a9c0783
1 changed files with 13 additions and 0 deletions
--- a/salt/elasticsearch/templates/component/so/dtc-event-mappings.json
+++ b/salt/elasticsearch/templates/component/so/dtc-event-mappings.json
@@ -137,6 +137,19 @@
                }
              }
            },
+            "severity_label": {
+              "ignore_above": 1024,
+              "type": "keyword",
+              "fields": {
+                "security": {
+                  "type": "text",
+                  "analyzer": "es_security_analyzer"
+                },
+                "keyword": {
+                  "type": "keyword"
+                }
+              }
+            },
            "timezone": {
              "ignore_above": 1024,
              "type": "keyword",