Skip to content

Cherry-pick #15236 to 7.x: User/Group Management Dashboards #16967

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Mar 13, 2020
Merged

Cherry-pick #15236 to 7.x: User/Group Management Dashboards #16967

merged 1 commit into from
Mar 13, 2020

Conversation

@andrewkroh
Copy link
Member

@andrewkroh andrewkroh commented Mar 11, 2020
edited by andresrc
Loading

Cherry-pick of PR #15236 to 7.x branch. Original message:

User and Group Management Events Dashboards

Screenshot_2019-12-20 winlogbeat User Management Events - Kibana
Screenshot_2019-12-20 winlogbeat Group Management Events - Kibana

@janniten @andrewkroh
Add User/Group Management Dashboards to Security module (elastic#15236)
2eb2027 
Add dashboards to the Winlogbeat Security module for visualizing User Management events
and Group Management events. There are two versions of each dashboard - one with and without TSVB (time series visual builder) visualizations.

This updates the Winlogbeat build to include the dashboards from the module directories.

Add it adds winlog.event_data.MemberName to the fields.yml because it's used in the user
management dashboard and should be in the fields.yml so the dashboards load without error.

Co-authored-by: Andrew Kroh <[email protected]>
(cherry picked from commit d866824)
@andrewkroh andrewkroh requested a review from a team as a code owner March 11, 2020 23:33
@elasticmachine
Copy link
Contributor

elasticmachine commented Mar 11, 2020

Pinging @elastic/siem (Team:SIEM)

leehinman
leehinman approved these changes Mar 13, 2020
View reviewed changes
Copy link
Contributor

@leehinman leehinman left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@andrewkroh andrewkroh merged commit aac538e into elastic:7.x Mar 13, 2020
@andrewkroh andrewkroh deleted the backport_15236_7.x branch January 14, 2022 14:09
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@leehinman leehinman leehinman approved these changes

Assignees

No one assigned

Labels

backport review

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@andrewkroh @elasticmachine @leehinman @janniten