II tried to deny my IP address and it didn't work, so I decided to try to deny everything and didn't work too.
and for the auditing, I am not seeing any *_audit.json file !
Could you tell me please if the auditing and IP filetring don't work with Trial License, or I am doing something wrong in my configuration !
Hi @TimV,
I try Elasticsearch 8.0.0 from source (github) to know if there is significant updates in the SIEM section as it's what I use ELastic for and then wait the release to update my cluster.
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.