Wes Lambert 1f71816ad7 Add keyword subfield for DTC winlog mappings

2022-03-03 14:54:30 +00:00

..

files

Revert syslog pipeline updates from Abe' PR for now

2022-03-01 15:31:07 +00:00

roles

Add limited roles with restricted visibility

2021-09-16 07:44:15 -04:00

templates

Add keyword subfield for DTC winlog mappings

2022-03-03 14:54:30 +00:00

tools/sbin

Initial composable template configuration and base mappings

2022-02-02 02:08:31 +00:00

auth.map.jinja

update auth.map and curl.config to use new elasticsearch:auth pillar format

2021-05-28 14:03:21 -04:00

auth.sls

dont allow $ to be used for elasticsearch:auth or kibana:secrets - https://github.com/Security-Onion-Solutions/securityonion/issues/7233

2022-02-18 13:13:56 -05:00

base-template.json.jinja

Initial template refactor

2022-02-14 15:20:33 +00:00

config.map.jinja

Update config.map.jinja

2022-02-18 08:50:28 -05:00

defaults.yaml

Add DTC destination, source, and winlog mapping references to templates in defaults file

2022-03-03 13:42:20 +00:00

init.sls

Run template load first to prevent issues with pipeline changes that generate new indices

2022-02-28 12:33:18 -05:00

template.map.jinja

Add ES template map file

2022-02-14 15:38:32 +00:00