My team just started using the ELK stack for asset data management -- pulling together data sets from multiple sources to connect information about assets within our enterprise. We're currently using IP address as the document ID and connecting info about URLs, MAC addresses, operating system, geographic location, etc. etc.
Has anyone used ELK for a similar project before or otherwise have suggestions on how to set up our structure and indices? Eventually we want to get to the point where we know the owner/user for any given asset so we can assign and fix problems more efficiently.
Thanks!