I'm completely new to Elasticsearch, any help would of great help.
Using the complete ELK stack to monitor the users logged into the site.
When a user logs into the website, the username is passed to elastic search and monitored using kibana.
Have a list of username in azure table and I wanted to add a watcher to Elasticsearch to alert when any of the users in the Azure table logs into the website.
Looked at the examples of the watcher but really confused how to setup alert in linking Elastcisearch with Azure table values.
Any idea or guidance or a sample would be of great help.
You have to manage the syncing between the azure table and watcher yourself.
If you can access the data in that table via a REST API call, you could execute that call during the watch execution. Otherwise a manually written sync mechanism, that tries to import the users from azure into elasticsearch might help. Then you could write a watch that simply executes a search.
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant
logo are trademarks of the
Apache Software Foundation
in the United States and/or other countries.