Delete: xpack.security.audit.index

eramitsinha · October 12, 2017, 5:08pm

Hi,

I am using Elastic Search 5.2.2, Kibana 5.2.2 and X-Pack 5.2.2

I have enabled auditing on my cluster, so this is working fine as I could see ".security_audit_log" index are getting generated.

But would like to understand is there any mechanism to archieve and delete Audit Indexes.

Similar to monitoring mechanism(xpack.monitoring.history.duration)

Thanks,
Amit Sinha.

TimV · October 13, 2017, 1:26am

There is nothing built-in to X-Pack for this. You can use curator to automate the removal of indices.

eramitsinha · October 13, 2017, 5:09pm

Thank You.

system · November 10, 2017, 5:09pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Deleting index for security audit log? Elasticsearch	1	795	June 13, 2017
How System Index like .monitoring-es-6-2018.02.06 are being deleted automatically Elasticsearch	4	3635	March 13, 2018
Can't delete index by "curl -XDELETE" with Xpack security enabled "failed to authenticate user [elastic]" Elasticsearch	2	1851	June 30, 2020
Xpack.Security.Audit.Index-Information Elasticsearch elastic-stack-security	3	353	July 11, 2019
X-pack not generating indices Elasticsearch	8	1352	July 11, 2017