I have a shared ELK in my Enterprise and we need to trace/log 2 type of action :
- Delete Index by API DELETE Call
- Delete doc by Delete_by_query
I try without success with Audit and slowlog.
Is there a way to have this information?
PS : ELK 7.5.1 with Basic License