Dears,
ELK version: 7.7.0
Is there any way to monitor/discover modification of documents in the ELK? Any idea?
Best Regards,
Dan
Is this an application question? For the latter, you could have an ingest pipeline that creates a last_modified timestamp and query for that one to find recently changed documents?
Hi @spinscale,
Yes, this is in case of logs from application. Thanks for your suggestion.
Regards,
Dan