Andex
November 18, 2020, 3:35pm
1
Hi, i enabled Audit on all my elasticsearch.yml :
xpack.security.audit.enabled: true
I have already enabled https and transport inside my cluster.
I don't know why my _audit.json file is empty . The owner - group to the file is elasticsearch:elasticsearch
Help thanks
warkolm
(Mark Walkom)
November 18, 2020, 9:44pm
2
Audit logging is a Gold and above license feature - https://www.elastic.co/subscriptions
What license level do you have?
warkolm
(Mark Walkom)
November 19, 2020, 8:49am
4
You can reach out to your support engineer then, they will be able to help you.
Andex
November 19, 2020, 8:56am
5
eemh, i'm the engineer, i tried several ways but the file is not populated, i don't know how to fix
dadoonet
(David Pilato)
November 19, 2020, 11:20am
6
Mark meant the elastic support.
system
(system)
Closed
December 17, 2020, 11:20am
7
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.