Discuss the Elastic Stack

An ECS compliant Kibana index pattern must be configured to view event data on the map

Elastic Security SIEM

tudor (Tudor Golubenco) November 29, 2019, 2:14pm 2

Hi Marcus,

To confirm, you need two things:

Add cisco-* for "SIEM Elasticsearch indices" under the Kibana Advanced Settings
A Kibana index pattern for cisco-*, which you can add under Kibana Management / Index Patterns.

Do you have both?

Topic		Replies	Views	Activity
Filebeat index pattern is created in ES. but cant be mapped by kibana Beats filebeat	5	709	January 18, 2018
Unable to fetch mapping. Do you have indices matching the pattern?No default index pattern. You must select or create one to continue Kibana	5	1681	October 13, 2017
Unable to fetch mapping. do you have indices matching the pattern error Kibana	3	9522	May 26, 2017
Kibana is unable to find any mapping Kibana	5	2512	July 6, 2017
Filebeat index pattern Beats filebeat	7	1931	June 22, 2017

© 2020. All Rights Reserved - Elasticsearch

Elasticsearch is a trademark of Elasticsearch BV, registered in the U.S. and in other countries
Trademarks
Terms
Privacy
Brand
Code of Conduct

Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.