II tried to deny my IP address and it didn't work, so I decided to try to deny everything and didn't work too.
and for the auditing, I am not seeing any *_audit.json file !
Could you tell me please if the auditing and IP filetring don't work with Trial License, or I am doing something wrong in my configuration !
Hi @TimV,
I try Elasticsearch 8.0.0 from source (github) to know if there is significant updates in the SIEM section as it's what I use ELastic for and then wait the release to update my cluster.
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant
logo are trademarks of the
Apache Software Foundation
in the United States and/or other countries.