Looking for some help on this one, read the docs but just cant figure out what I'm missing.
I have set up elasticsearch, kibana, fleet and security with all the rules but nothing is showing up in Security > alerts,
however if I know they are working because I can see them in
Security > Rules > Detection rules (SIEM) and select an enabled rule I can see that its it working
can also see them working in
-discover
-detection and response dashboard
-[Elastic Security] Detection rule monitoring dashboard.
Ex: System Owner/User Discovery Linux
running version 8.13.2
I have set the xpack.encryptedSavedObjects.encryptionKey: "min-32-byte-long-strong-encryption-key" in /etc/kibana/kibana.yml
I just dont know why its not showing up in alerts