Skip to content

Commit

Permalink
FEATURE: Add Events column layout for event.dataset system.auth #12628
Browse files Browse the repository at this point in the history
  • Loading branch information
@dougburks
dougburks authored Mar 20, 2024
1 parent 655d3e3 commit 44c36e0
Showing 1 changed file with 1 addition and 0 deletions.
1 change: 1 addition & 0 deletions salt/soc/merged.map.jinja
View file
Original file line number Diff line number Diff line change
Expand Up @@ -85,6 +85,7 @@
{% do SOCMERGED.config.eventFields.update({':endpoint:events.process': SOCMERGED.config.eventFields.pop(':endpoint:events_x_process') }) %}
{% do SOCMERGED.config.eventFields.update({':endpoint:events.registry': SOCMERGED.config.eventFields.pop(':endpoint:events_x_registry') }) %}
{% do SOCMERGED.config.eventFields.update({':endpoint:events.security': SOCMERGED.config.eventFields.pop(':endpoint:events_x_security') }) %}
{% do SOCMERGED.config.eventFields.update({':system:system.auth': SOCMERGED.config.eventFields.pop(':system:system_x_auth') }) %}
{% set standard_eventFields = SOCMERGED.config.pop('eventFields') %}
{% do SOCMERGED.config.server.client.hunt.update({'eventFields': standard_eventFields}) %}
{% do SOCMERGED.config.server.client.dashboards.update({'eventFields': standard_eventFields}) %}

0 comments on commit 44c36e0

Please sign in to comment.