I have a use case where I need to log when a user runs the DELETE REST command from DevTools to delete an index. Ideally, I'd want to store username, timestamp, and the command that was run. Does Elasticsearch or Kibana (with X-Pack) have this functionality built in, or would I need to look into building something custom?
RI think that audit logging can do that. It's under a commercial license AFAIK.
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.