Alert rules requiring endpoint integration 8.2.0 when 8.6.1 is installed already

We're seeing an issue in the Rules section. Several rules indicate they require the Endpoint Integration to be installed. Endpoint is installed and deployed on thousands of devices. The link provided points to version 8.2.0 and older version.

We are running 8.6.1 with the 8.6.1 endpoint defense integration installed and upgrade.

Anyone else seeing the rules indicate it thinks endpoint is not installed and recommends an older 8.2.0 version?


Hi @Kelly_Slavens There is an issue on github that mentions this issue which will be fixed in Elastic 8.6.2 / 8.7. Follow the link

Thanks, Good to know.

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.