diff --git a/salt/elasticsearch/templates/index/so/so-aws-template.json.jinja b/salt/elasticsearch/templates/index/so/so-aws-template.json.jinja index 0e3415b5a..09e61fa8a 100644 --- a/salt/elasticsearch/templates/index/so/so-aws-template.json.jinja +++ b/salt/elasticsearch/templates/index/so/so-aws-template.json.jinja @@ -58,6 +58,7 @@ "error-mappings", "event-mappings", "dtc-event-mappings", + "file-mappings", "dtc-file-mappings", "group-mappings", "host-mappings", diff --git a/salt/elasticsearch/templates/index/so/so-azure-template.json.jinja b/salt/elasticsearch/templates/index/so/so-azure-template.json.jinja index e709e5f33..366acb167 100644 --- a/salt/elasticsearch/templates/index/so/so-azure-template.json.jinja +++ b/salt/elasticsearch/templates/index/so/so-azure-template.json.jinja @@ -58,6 +58,7 @@ "error-mappings", "event-mappings", "dtc-event-mappings", + "file-mappings", "dtc-file-mappings", "group-mappings", "host-mappings", diff --git a/salt/elasticsearch/templates/index/so/so-barracuda-template.json.jinja b/salt/elasticsearch/templates/index/so/so-barracuda-template.json.jinja index 98831543f..bde70c190 100644 --- a/salt/elasticsearch/templates/index/so/so-barracuda-template.json.jinja +++ b/salt/elasticsearch/templates/index/so/so-barracuda-template.json.jinja @@ -58,6 +58,7 @@ "error-mappings", "event-mappings", "dtc-event-mappings", + "file-mappings", "dtc-file-mappings", "group-mappings", "host-mappings", diff --git a/salt/elasticsearch/templates/index/so/so-beats-template.json.jinja b/salt/elasticsearch/templates/index/so/so-beats-template.json.jinja index acec9e771..54eb8dccb 100644 --- a/salt/elasticsearch/templates/index/so/so-beats-template.json.jinja +++ b/salt/elasticsearch/templates/index/so/so-beats-template.json.jinja @@ -58,6 +58,7 @@ "error-mappings", "event-mappings", "dtc-event-mappings", + "file-mappings", "dtc-file-mappings", "group-mappings", "host-mappings", @@ -93,7 +94,8 @@ "vulnerability-mappings", "common-settings", "common-dynamic-mappings", - "winlog-mappings" + "winlog-mappings", + "so-winlog-mappings" ], "priority": {{ PRIORITY }}, "_meta": { diff --git a/salt/elasticsearch/templates/index/so/so-bluecoat-template.json.jinja b/salt/elasticsearch/templates/index/so/so-bluecoat-template.json.jinja index aad678ff9..e0b69f24d 100644 --- a/salt/elasticsearch/templates/index/so/so-bluecoat-template.json.jinja +++ b/salt/elasticsearch/templates/index/so/so-bluecoat-template.json.jinja @@ -58,6 +58,7 @@ "error-mappings", "event-mappings", "dtc-event-mappings", + "file-mappings", "dtc-file-mappings", "group-mappings", "host-mappings", diff --git a/salt/elasticsearch/templates/index/so/so-cef-template.json.jinja b/salt/elasticsearch/templates/index/so/so-cef-template.json.jinja index 1cf37b31b..c47d36875 100644 --- a/salt/elasticsearch/templates/index/so/so-cef-template.json.jinja +++ b/salt/elasticsearch/templates/index/so/so-cef-template.json.jinja @@ -58,6 +58,7 @@ "error-mappings", "event-mappings", "dtc-event-mappings", + "file-mappings", "dtc-file-mappings", "group-mappings", "host-mappings", diff --git a/salt/elasticsearch/templates/index/so/so-checkpoint-template.json.jinja b/salt/elasticsearch/templates/index/so/so-checkpoint-template.json.jinja index d737ef586..458c675ac 100644 --- a/salt/elasticsearch/templates/index/so/so-checkpoint-template.json.jinja +++ b/salt/elasticsearch/templates/index/so/so-checkpoint-template.json.jinja @@ -58,6 +58,7 @@ "error-mappings", "event-mappings", "dtc-event-mappings", + "file-mappings", "dtc-file-mappings", "group-mappings", "host-mappings", diff --git a/salt/elasticsearch/templates/index/so/so-cisco-template.json.jinja b/salt/elasticsearch/templates/index/so/so-cisco-template.json.jinja index 3a875f828..b506026f8 100644 --- a/salt/elasticsearch/templates/index/so/so-cisco-template.json.jinja +++ b/salt/elasticsearch/templates/index/so/so-cisco-template.json.jinja @@ -59,6 +59,7 @@ "error-mappings", "event-mappings", "dtc-event-mappings", + "file-mappings", "dtc-file-mappings", "group-mappings", "host-mappings", diff --git a/salt/elasticsearch/templates/index/so/so-cyberark-template.json.jinja b/salt/elasticsearch/templates/index/so/so-cyberark-template.json.jinja index 3c1836348..d0e2802e5 100644 --- a/salt/elasticsearch/templates/index/so/so-cyberark-template.json.jinja +++ b/salt/elasticsearch/templates/index/so/so-cyberark-template.json.jinja @@ -58,6 +58,7 @@ "error-mappings", "event-mappings", "dtc-event-mappings", + "file-mappings", "dtc-file-mappings", "group-mappings", "host-mappings", diff --git a/salt/elasticsearch/templates/index/so/so-cylance-template.json.jinja b/salt/elasticsearch/templates/index/so/so-cylance-template.json.jinja index b0a8b045e..910fea825 100644 --- a/salt/elasticsearch/templates/index/so/so-cylance-template.json.jinja +++ b/salt/elasticsearch/templates/index/so/so-cylance-template.json.jinja @@ -58,6 +58,7 @@ "error-mappings", "event-mappings", "dtc-event-mappings", + "file-mappings", "dtc-file-mappings", "group-mappings", "host-mappings", diff --git a/salt/elasticsearch/templates/index/so/so-elasticsearch-template.json.jinja b/salt/elasticsearch/templates/index/so/so-elasticsearch-template.json.jinja index 3002429c9..ce6864398 100644 --- a/salt/elasticsearch/templates/index/so/so-elasticsearch-template.json.jinja +++ b/salt/elasticsearch/templates/index/so/so-elasticsearch-template.json.jinja @@ -58,6 +58,7 @@ "error-mappings", "event-mappings", "dtc-event-mappings", + "file-mappings", "dtc-file-mappings", "group-mappings", "host-mappings", diff --git a/salt/elasticsearch/templates/index/so/so-endgame-template.json.jinja b/salt/elasticsearch/templates/index/so/so-endgame-template.json.jinja index 6c8c86757..9de433b05 100644 --- a/salt/elasticsearch/templates/index/so/so-endgame-template.json.jinja +++ b/salt/elasticsearch/templates/index/so/so-endgame-template.json.jinja @@ -56,9 +56,10 @@ "ecs-mappings", "dtc-ecs-mappings", "endgame-mappings", - "error-mappings", + "error-mappings", "event-mappings", "dtc-event-mappings", + "file-mappings", "dtc-file-mappings", "group-mappings", "host-mappings", diff --git a/salt/elasticsearch/templates/index/so/so-f5-template.json.jinja b/salt/elasticsearch/templates/index/so/so-f5-template.json.jinja index 6638aa6a4..6a558742f 100644 --- a/salt/elasticsearch/templates/index/so/so-f5-template.json.jinja +++ b/salt/elasticsearch/templates/index/so/so-f5-template.json.jinja @@ -58,6 +58,7 @@ "error-mappings", "event-mappings", "dtc-event-mappings", + "file-mappings", "dtc-file-mappings", "group-mappings", "host-mappings", diff --git a/salt/elasticsearch/templates/index/so/so-firewall-template.json.jinja b/salt/elasticsearch/templates/index/so/so-firewall-template.json.jinja index d0ec4a39a..cf489278e 100644 --- a/salt/elasticsearch/templates/index/so/so-firewall-template.json.jinja +++ b/salt/elasticsearch/templates/index/so/so-firewall-template.json.jinja @@ -58,6 +58,7 @@ "error-mappings", "event-mappings", "dtc-event-mappings", + "file-mappings", "dtc-file-mappings", "group-mappings", "host-mappings", diff --git a/salt/elasticsearch/templates/index/so/so-flow-template.json.jinja b/salt/elasticsearch/templates/index/so/so-flow-template.json.jinja index 667ac0bc6..1fb892487 100644 --- a/salt/elasticsearch/templates/index/so/so-flow-template.json.jinja +++ b/salt/elasticsearch/templates/index/so/so-flow-template.json.jinja @@ -58,6 +58,7 @@ "error-mappings", "event-mappings", "dtc-event-mappings", + "file-mappings", "dtc-file-mappings", "group-mappings", "host-mappings", diff --git a/salt/elasticsearch/templates/index/so/so-fortinet-template.json.jinja b/salt/elasticsearch/templates/index/so/so-fortinet-template.json.jinja index e60829ed1..00fa7be2a 100644 --- a/salt/elasticsearch/templates/index/so/so-fortinet-template.json.jinja +++ b/salt/elasticsearch/templates/index/so/so-fortinet-template.json.jinja @@ -58,6 +58,7 @@ "error-mappings", "event-mappings", "dtc-event-mappings", + "file-mappings", "dtc-file-mappings", "group-mappings", "host-mappings", diff --git a/salt/elasticsearch/templates/index/so/so-gcp-template.json.jinja b/salt/elasticsearch/templates/index/so/so-gcp-template.json.jinja index d9d2d0c4e..aa964a52d 100644 --- a/salt/elasticsearch/templates/index/so/so-gcp-template.json.jinja +++ b/salt/elasticsearch/templates/index/so/so-gcp-template.json.jinja @@ -58,6 +58,7 @@ "error-mappings", "event-mappings", "dtc-event-mappings", + "file-mappings", "dtc-file-mappings", "group-mappings", "host-mappings", diff --git a/salt/elasticsearch/templates/index/so/so-google_workspace-template.json.jinja b/salt/elasticsearch/templates/index/so/so-google_workspace-template.json.jinja index 96c911197..5816a94f3 100644 --- a/salt/elasticsearch/templates/index/so/so-google_workspace-template.json.jinja +++ b/salt/elasticsearch/templates/index/so/so-google_workspace-template.json.jinja @@ -58,6 +58,7 @@ "error-mappings", "event-mappings", "dtc-event-mappings", + "file-mappings", "dtc-file-mappings", "group-mappings", "host-mappings", diff --git a/salt/elasticsearch/templates/index/so/so-ids-template.json.jinja b/salt/elasticsearch/templates/index/so/so-ids-template.json.jinja index 4c59cad35..44c56645e 100644 --- a/salt/elasticsearch/templates/index/so/so-ids-template.json.jinja +++ b/salt/elasticsearch/templates/index/so/so-ids-template.json.jinja @@ -58,6 +58,7 @@ "error-mappings", "event-mappings", "dtc-event-mappings", + "file-mappings", "dtc-file-mappings", "group-mappings", "host-mappings", diff --git a/salt/elasticsearch/templates/index/so/so-imperva-template.json.jinja b/salt/elasticsearch/templates/index/so/so-imperva-template.json.jinja index a1e0faf9f..bdc399121 100644 --- a/salt/elasticsearch/templates/index/so/so-imperva-template.json.jinja +++ b/salt/elasticsearch/templates/index/so/so-imperva-template.json.jinja @@ -58,6 +58,7 @@ "error-mappings", "event-mappings", "dtc-event-mappings", + "file-mappings", "dtc-file-mappings", "group-mappings", "host-mappings", diff --git a/salt/elasticsearch/templates/index/so/so-import-template.json.jinja b/salt/elasticsearch/templates/index/so/so-import-template.json.jinja index 32cde3eac..d449009c9 100644 --- a/salt/elasticsearch/templates/index/so/so-import-template.json.jinja +++ b/salt/elasticsearch/templates/index/so/so-import-template.json.jinja @@ -58,6 +58,7 @@ "error-mappings", "event-mappings", "dtc-event-mappings", + "file-mappings", "dtc-file-mappings", "group-mappings", "host-mappings", diff --git a/salt/elasticsearch/templates/index/so/so-infoblox-template.json.jinja b/salt/elasticsearch/templates/index/so/so-infoblox-template.json.jinja index 9c76bb6e6..f8e070b25 100644 --- a/salt/elasticsearch/templates/index/so/so-infoblox-template.json.jinja +++ b/salt/elasticsearch/templates/index/so/so-infoblox-template.json.jinja @@ -58,6 +58,7 @@ "error-mappings", "event-mappings", "dtc-event-mappings", + "file-mappings", "dtc-file-mappings", "group-mappings", "host-mappings", diff --git a/salt/elasticsearch/templates/index/so/so-juniper-template.json.jinja b/salt/elasticsearch/templates/index/so/so-juniper-template.json.jinja index cbd2efcfa..1f2eca87c 100644 --- a/salt/elasticsearch/templates/index/so/so-juniper-template.json.jinja +++ b/salt/elasticsearch/templates/index/so/so-juniper-template.json.jinja @@ -58,6 +58,7 @@ "error-mappings", "event-mappings", "dtc-event-mappings", + "file-mappings", "dtc-file-mappings", "group-mappings", "host-mappings", diff --git a/salt/elasticsearch/templates/index/so/so-kibana-template.json.jinja b/salt/elasticsearch/templates/index/so/so-kibana-template.json.jinja index 2f89532b8..446b0f715 100644 --- a/salt/elasticsearch/templates/index/so/so-kibana-template.json.jinja +++ b/salt/elasticsearch/templates/index/so/so-kibana-template.json.jinja @@ -58,6 +58,7 @@ "error-mappings", "event-mappings", "dtc-event-mappings", + "file-mappings", "dtc-file-mappings", "group-mappings", "host-mappings", diff --git a/salt/elasticsearch/templates/index/so/so-logstash-template.json.jinja b/salt/elasticsearch/templates/index/so/so-logstash-template.json.jinja index bdf7b1b1c..983840f93 100644 --- a/salt/elasticsearch/templates/index/so/so-logstash-template.json.jinja +++ b/salt/elasticsearch/templates/index/so/so-logstash-template.json.jinja @@ -58,6 +58,7 @@ "error-mappings", "event-mappings", "dtc-event-mappings", + "file-mappings", "dtc-file-mappings", "group-mappings", "host-mappings", diff --git a/salt/elasticsearch/templates/index/so/so-microsoft-template.json.jinja b/salt/elasticsearch/templates/index/so/so-microsoft-template.json.jinja index 523a09251..6105b1e00 100644 --- a/salt/elasticsearch/templates/index/so/so-microsoft-template.json.jinja +++ b/salt/elasticsearch/templates/index/so/so-microsoft-template.json.jinja @@ -58,6 +58,7 @@ "error-mappings", "event-mappings", "dtc-event-mappings", + "file-mappings", "dtc-file-mappings", "group-mappings", "host-mappings", diff --git a/salt/elasticsearch/templates/index/so/so-misp-template.json.jinja b/salt/elasticsearch/templates/index/so/so-misp-template.json.jinja index 0397f1a0a..a2b2a0d63 100644 --- a/salt/elasticsearch/templates/index/so/so-misp-template.json.jinja +++ b/salt/elasticsearch/templates/index/so/so-misp-template.json.jinja @@ -58,6 +58,7 @@ "error-mappings", "event-mappings", "dtc-event-mappings", + "file-mappings", "dtc-file-mappings", "group-mappings", "host-mappings", diff --git a/salt/elasticsearch/templates/index/so/so-netflow-template.json.jinja b/salt/elasticsearch/templates/index/so/so-netflow-template.json.jinja index 6a324016a..470e86977 100644 --- a/salt/elasticsearch/templates/index/so/so-netflow-template.json.jinja +++ b/salt/elasticsearch/templates/index/so/so-netflow-template.json.jinja @@ -58,6 +58,7 @@ "error-mappings", "event-mappings", "dtc-event-mappings", + "file-mappings", "dtc-file-mappings", "group-mappings", "host-mappings", diff --git a/salt/elasticsearch/templates/index/so/so-netscout-template.json.jinja b/salt/elasticsearch/templates/index/so/so-netscout-template.json.jinja index 704c0058d..7670d5659 100644 --- a/salt/elasticsearch/templates/index/so/so-netscout-template.json.jinja +++ b/salt/elasticsearch/templates/index/so/so-netscout-template.json.jinja @@ -58,6 +58,7 @@ "error-mappings", "event-mappings", "dtc-event-mappings", + "file-mappings", "dtc-file-mappings", "group-mappings", "host-mappings", diff --git a/salt/elasticsearch/templates/index/so/so-o365-template.json.jinja b/salt/elasticsearch/templates/index/so/so-o365-template.json.jinja index 31243829d..c34cbbd37 100644 --- a/salt/elasticsearch/templates/index/so/so-o365-template.json.jinja +++ b/salt/elasticsearch/templates/index/so/so-o365-template.json.jinja @@ -58,6 +58,7 @@ "error-mappings", "event-mappings", "dtc-event-mappings", + "file-mappings", "dtc-file-mappings", "group-mappings", "host-mappings", diff --git a/salt/elasticsearch/templates/index/so/so-okta-template.json.jinja b/salt/elasticsearch/templates/index/so/so-okta-template.json.jinja index 1fe0bd169..e45a664d9 100644 --- a/salt/elasticsearch/templates/index/so/so-okta-template.json.jinja +++ b/salt/elasticsearch/templates/index/so/so-okta-template.json.jinja @@ -58,6 +58,7 @@ "error-mappings", "event-mappings", "dtc-event-mappings", + "file-mappings", "dtc-file-mappings", "group-mappings", "host-mappings", diff --git a/salt/elasticsearch/templates/index/so/so-osquery-template.json.jinja b/salt/elasticsearch/templates/index/so/so-osquery-template.json.jinja index b862db93f..63b239926 100644 --- a/salt/elasticsearch/templates/index/so/so-osquery-template.json.jinja +++ b/salt/elasticsearch/templates/index/so/so-osquery-template.json.jinja @@ -58,6 +58,7 @@ "error-mappings", "event-mappings", "dtc-event-mappings", + "file-mappings", "dtc-file-mappings", "group-mappings", "host-mappings", @@ -93,7 +94,8 @@ "vulnerability-mappings", "common-settings", "common-dynamic-mappings", - "winlog-mappings" + "winlog-mappings", + "so-winlog-mappings" ], "priority": {{ PRIORITY }}, "_meta": { diff --git a/salt/elasticsearch/templates/index/so/so-ossec-template.json.jinja b/salt/elasticsearch/templates/index/so/so-ossec-template.json.jinja index a3272d88f..7ef475e45 100644 --- a/salt/elasticsearch/templates/index/so/so-ossec-template.json.jinja +++ b/salt/elasticsearch/templates/index/so/so-ossec-template.json.jinja @@ -58,6 +58,7 @@ "error-mappings", "event-mappings", "dtc-event-mappings", + "file-mappings", "dtc-file-mappings", "group-mappings", "host-mappings", @@ -93,7 +94,8 @@ "vulnerability-mappings", "common-settings", "common-dynamic-mappings", - "winlog-mappings" + "winlog-mappings", + "so-winlog-mappings" ], "priority": {{ PRIORITY }}, "_meta": { diff --git a/salt/elasticsearch/templates/index/so/so-proofpoint-template.json.jinja b/salt/elasticsearch/templates/index/so/so-proofpoint-template.json.jinja index 0c2c70fd1..a75ebc600 100644 --- a/salt/elasticsearch/templates/index/so/so-proofpoint-template.json.jinja +++ b/salt/elasticsearch/templates/index/so/so-proofpoint-template.json.jinja @@ -58,6 +58,7 @@ "error-mappings", "event-mappings", "dtc-event-mappings", + "file-mappings", "dtc-file-mappings", "group-mappings", "host-mappings", diff --git a/salt/elasticsearch/templates/index/so/so-radware-template.json.jinja b/salt/elasticsearch/templates/index/so/so-radware-template.json.jinja index cdfad7c16..19b7081e1 100644 --- a/salt/elasticsearch/templates/index/so/so-radware-template.json.jinja +++ b/salt/elasticsearch/templates/index/so/so-radware-template.json.jinja @@ -58,6 +58,7 @@ "error-mappings", "event-mappings", "dtc-event-mappings", + "file-mappings", "dtc-file-mappings", "group-mappings", "host-mappings", diff --git a/salt/elasticsearch/templates/index/so/so-redis-template.json.jinja b/salt/elasticsearch/templates/index/so/so-redis-template.json.jinja index 39bf9946f..8eb44cb87 100644 --- a/salt/elasticsearch/templates/index/so/so-redis-template.json.jinja +++ b/salt/elasticsearch/templates/index/so/so-redis-template.json.jinja @@ -58,6 +58,7 @@ "error-mappings", "event-mappings", "dtc-event-mappings", + "file-mappings", "dtc-file-mappings", "group-mappings", "host-mappings", diff --git a/salt/elasticsearch/templates/index/so/so-snort-template.json.jinja b/salt/elasticsearch/templates/index/so/so-snort-template.json.jinja index b86ea153c..63b2506f0 100644 --- a/salt/elasticsearch/templates/index/so/so-snort-template.json.jinja +++ b/salt/elasticsearch/templates/index/so/so-snort-template.json.jinja @@ -58,6 +58,7 @@ "error-mappings", "event-mappings", "dtc-event-mappings", + "file-mappings", "dtc-file-mappings", "group-mappings", "host-mappings", diff --git a/salt/elasticsearch/templates/index/so/so-snyk-template.json.jinja b/salt/elasticsearch/templates/index/so/so-snyk-template.json.jinja index 54032f3f7..c22a6d9bd 100644 --- a/salt/elasticsearch/templates/index/so/so-snyk-template.json.jinja +++ b/salt/elasticsearch/templates/index/so/so-snyk-template.json.jinja @@ -58,6 +58,7 @@ "error-mappings", "event-mappings", "dtc-event-mappings", + "file-mappings", "dtc-file-mappings", "group-mappings", "host-mappings", diff --git a/salt/elasticsearch/templates/index/so/so-sonicwall-template.json.jinja b/salt/elasticsearch/templates/index/so/so-sonicwall-template.json.jinja index ea6d7abb9..f2b9c558d 100644 --- a/salt/elasticsearch/templates/index/so/so-sonicwall-template.json.jinja +++ b/salt/elasticsearch/templates/index/so/so-sonicwall-template.json.jinja @@ -58,6 +58,7 @@ i%- set INDEX_SORTING = salt['pillar.get']('elasticsearch:index_sorting', False) "error-mappings", "event-mappings", "dtc-event-mappings", + "file-mappings", "dtc-file-mappings", "group-mappings", "host-mappings", diff --git a/salt/elasticsearch/templates/index/so/so-sophos-template.json.jinja b/salt/elasticsearch/templates/index/so/so-sophos-template.json.jinja index f89400f97..1eda879fb 100644 --- a/salt/elasticsearch/templates/index/so/so-sophos-template.json.jinja +++ b/salt/elasticsearch/templates/index/so/so-sophos-template.json.jinja @@ -58,6 +58,7 @@ "error-mappings", "event-mappings", "dtc-event-mappings", + "file-mappings", "dtc-file-mappings", "group-mappings", "host-mappings", diff --git a/salt/elasticsearch/templates/index/so/so-squid-template.json.jinja b/salt/elasticsearch/templates/index/so/so-squid-template.json.jinja index 3de2f1988..3ec8fe067 100644 --- a/salt/elasticsearch/templates/index/so/so-squid-template.json.jinja +++ b/salt/elasticsearch/templates/index/so/so-squid-template.json.jinja @@ -58,6 +58,7 @@ "error-mappings", "event-mappings", "dtc-event-mappings", + "file-mappings", "dtc-file-mappings", "group-mappings", "host-mappings", diff --git a/salt/elasticsearch/templates/index/so/so-strelka-template.json.jinja b/salt/elasticsearch/templates/index/so/so-strelka-template.json.jinja index 535aa39eb..06783d3e8 100644 --- a/salt/elasticsearch/templates/index/so/so-strelka-template.json.jinja +++ b/salt/elasticsearch/templates/index/so/so-strelka-template.json.jinja @@ -58,7 +58,9 @@ "error-mappings", "event-mappings", "dtc-event-mappings", + "file-mappings", "dtc-file-mappings", + "so-file-mappings", "group-mappings", "host-mappings", "dtc-host-mappings", diff --git a/salt/elasticsearch/templates/index/so/so-syslog-template.json.jinja b/salt/elasticsearch/templates/index/so/so-syslog-template.json.jinja index 5d63335c5..af609836e 100644 --- a/salt/elasticsearch/templates/index/so/so-syslog-template.json.jinja +++ b/salt/elasticsearch/templates/index/so/so-syslog-template.json.jinja @@ -58,6 +58,7 @@ "error-mappings", "event-mappings", "dtc-event-mappings", + "file-mappings", "dtc-file-mappings", "group-mappings", "host-mappings", diff --git a/salt/elasticsearch/templates/index/so/so-tomcat-template.json.jinja b/salt/elasticsearch/templates/index/so/so-tomcat-template.json.jinja index 69087e65c..af48c7540 100644 --- a/salt/elasticsearch/templates/index/so/so-tomcat-template.json.jinja +++ b/salt/elasticsearch/templates/index/so/so-tomcat-template.json.jinja @@ -58,6 +58,7 @@ "error-mappings", "event-mappings", "dtc-event-mappings", + "file-mappings", "dtc-file-mappings", "group-mappings", "host-mappings", diff --git a/salt/elasticsearch/templates/index/so/so-zeek-template.json.jinja b/salt/elasticsearch/templates/index/so/so-zeek-template.json.jinja index ebc5e4c9a..a7a354936 100644 --- a/salt/elasticsearch/templates/index/so/so-zeek-template.json.jinja +++ b/salt/elasticsearch/templates/index/so/so-zeek-template.json.jinja @@ -58,6 +58,7 @@ "error-mappings", "event-mappings", "dtc-event-mappings", + "file-mappings", "dtc-file-mappings", "group-mappings", "host-mappings", diff --git a/salt/elasticsearch/templates/index/so/so-zscaler-template.json.jinja b/salt/elasticsearch/templates/index/so/so-zscaler-template.json.jinja index c65c8ae85..abb475b6f 100644 --- a/salt/elasticsearch/templates/index/so/so-zscaler-template.json.jinja +++ b/salt/elasticsearch/templates/index/so/so-zscaler-template.json.jinja @@ -58,6 +58,7 @@ "error-mappings", "event-mappings", "dtc-event-mappings", + "file-mappings", "dtc-file-mappings", "group-mappings", "host-mappings",