[DOCS] Updating Elastic Security Overview topic #101922
[DOCS] Updating Elastic Security Overview topic #101922jmikell821 merged 4 commits intoelastic:masterfrom
Conversation
jmikell821
added
Team:Docs
release_note:skip
|
Pinging @elastic/kibana-docs (Team:Docs) |
docs/siem/siem-ui.asciidoc
Outdated
|
|
||
| * Data is shipped from your hosts to {es} via beat modules and the Elastic | ||
| Endpoint Security agent integration: | ||
| ** {security-guide}/install-endpoint.html[{es-sec-endpoint}] - Elastic agent integration that |
There was a problem hiding this comment.
Only flagging because I'm not sure why the {es-sec-endpoint} attribute is showing up as {es-sec-endpoint} in this sentence instead of Endpoint Security.
There was a problem hiding this comment.
I think it needs to be one of the ones listed here: https://github.com/elastic/docs/blob/6367efdfd6ebbb1787e289f5fee67ba870e14c28/shared/attributes.asciidoc#L210-L212
docs/siem/siem-ui.asciidoc
Outdated
| event is discovered, a detection alert is generated. External systems, such as | ||
| Slack and email, can be used to send notifications when alerts are generated. | ||
| You can create your own rules and make use of our {security-guide}/prebuilt-rules.html[prebuilt ones]. | ||
| *** {security-guide}/detections-ui-exceptions.html [Exceptions]: Reduce noise and the number of |
There was a problem hiding this comment.
Think the space between the topic link and the [Exceptions] might need to be removed for the text to show up as linked text.
docs/siem/siem-ui.asciidoc
Outdated
| ** {security-guide}/cases-overview.html[Cases]: An internal system for opening, tracking, and sharing | ||
| security issues directly in the Security app. Cases can be integrated with | ||
| external ticketing systems. | ||
| ** {security-guide}/admin-page-ov.html[Administration]: View and manage hosts running {es-sec-endpoint}. |
There was a problem hiding this comment.
Flagging because this is showing up as {es-sec-endpoint} instead of Endpoint Security in the output.
docs/siem/siem-ui.asciidoc
Outdated
| false positives. Exceptions are associated with rules and prevent alerts when | ||
| an exception's conditions are met. *Value lists* contain source event | ||
| values that can be used as part of an exception's conditions. When | ||
| {es-sec-endpoint} is installed on your hosts, you can add malware exceptions |
There was a problem hiding this comment.
I think this is another one that needs to be changed to either "{endpoint-sec}", "{elastic-sec}", or "{elastic-endpoint}" depending on the correct product for this context:
| {es-sec-endpoint} is installed on your hosts, you can add malware exceptions | |
| {endpoint-sec} is installed on your hosts, you can add malware exceptions |
docs/siem/siem-ui.asciidoc
Outdated
| [discrete] | ||
| === Compatibility with cold tier nodes | ||
|
|
||
| Cold tier is a {ref}/data-tiers.html[data tier] that holds time series data that is accessed only occasionally. In {stack} version >=7.11.0, {es-sec} supports cold tier data for the following {es} indices: |
There was a problem hiding this comment.
In {stack} version >=7.11.0, {es-sec} supports ...
This is another attribute that doesn't seem to exist in https://github.com/elastic/docs/blob/master/shared/attributes.asciidoc at the moment. It either needs to be added there or a different existing attribute chosen from that file.
KOTungseth
left a comment
KOTungseth
left a comment
There was a problem hiding this comment.
One small comment, but otherwise, LGTM.
…egrations-to-global-search * 'master' of github.com:elastic/kibana: (46 commits) [Lens] Add some more documentation for dynamic coloring (elastic#101369) hide not searchable results when no term (elastic#102401) [Lens] Fix Formula functional test with multiple suggestions (elastic#102378) Fix trusted apps modified by field displayed as a date field (elastic#102377) [Lens] Docs for time shift (elastic#102048) update readme of logs-metrics-ui (elastic#101968) Refactor observability plugin breadcrumbs (elastic#102290) [Index Patterns] Move rollup config to index pattern management v2 (elastic#102285) [Security Solution][Endpoint] Isolate Action should only be available to Platinum+ licenses (elastic#102374) [build] Updates Ironbank templates (elastic#102407) Update security best practices document (elastic#100814) [Enterprise Search] Set up initial KibanaPageTemplate (elastic#102170) [Reporting/Docs] Add section to troubleshooting guide to explain the StatusCodeError logs (elastic#102278) [DOCS] Updating Elastic Security Overview topic (elastic#101922) [Uptime] refactor Synthetics Integration package UI (elastic#102080) [Task Manager] Log at different levels based on the state (elastic#101751) [APM] Fixing time comparison types (elastic#101423) [RAC] Update alert documents in lifecycle rule type helper (elastic#101598) [ML] Functional tests - fix and re-activate alerting flyout test (elastic#102368) [Reporting] remove unused reference to path.data config (elastic#102267) ... # Conflicts: # x-pack/plugins/fleet/kibana.json
|
Friendly reminder: Looks like this PR hasn’t been backported yet. |
kibanamachine
added
the
backport missing
|
Friendly reminder: Looks like this PR hasn’t been backported yet. |
1 similar comment
|
Friendly reminder: Looks like this PR hasn’t been backported yet. |
jmikell821
added
v7.14.0
v8.0.0
auto-backport
* updating overview topic for Kibana * formatting fixes * small formatting tweaks * small formatting tweaks
* updating overview topic for Kibana * formatting fixes * small formatting tweaks * small formatting tweaks
kibanamachine
removed
the
backport missing
6 participants
Addresses #98829.
Preview link.