I thought this was easy but after several attempt i wasnt able to get it working. We have a routine morning health check. i was trying to focus on errors or issue for the snapshot or agent logs but to no avail.
- For the snapshots i was trying to filter by jobs that is not complete state.
Kibana GUI >> stack management >> snapshot and restore >> snapshots
How can I filter for state column NOT EQUAL to complete?
- For the agents logs. I was trying to filter to show events that have error.message
Kibana GUI >> fleet >> agents >> "agent_id" >> agent "logs" tab
How can I filter for error.messages column NOT NULL?
Kindly advice. Thanks in advance.