FEATURE: Add Events table columns for event.module elastic_agent #12666

2025-12-06 09:12:45 +01:00 · 2024-03-26 16:08:41 -04:00
parent 63a58efba4
commit e2caf4668e
1 changed files with 4 additions and 0 deletions
--- a/salt/soc/defaults.yaml
+++ b/salt/soc/defaults.yaml
@@ -1176,6 +1176,10 @@ soc:
        -  logdata.USERNAME
        -  logdata.USERAGENT
        -  event.dataset
      ':elastic_agent:':
        -  soc_timestamp
        -  event.dataset
        -  message
    server:
      bindAddress: 0.0.0.0:9822
      baseUrl: /