The update history of cluster settings

as per doc update cluster settings request the api request updates the cluster settings.

My question is - Is there any logs for tracking each time this api is called?

I ask because we're seeing a strange setting in the cluster and everyone don't know when and who set this value. We need to figure it out when and who and thus to inter the purpose of this change. Appreciate it.

Not per default, you would need to enable the Audit logs, which is a paid feature.

So, if you do not have a paid license, you cannot enable audit logs.

1 Like

If we’re using enterprise search, does it mean we already have Audit log feature?

There is a UI to manage audit logs in Kibaba, right?

No, to enable Audit logs you need to have a paid Elasticsearch license.

Also no, this is configured in Elasticsearch, Kibana is a client to Elasticsearch, the audit is done by Elasticsearch nodes.

Please check the documentation about audit logging here.

1 Like