Hello there, I´m trying the elk stack 8 and I´m a bit lost. Configured the security portion and when I send the logs over to the Elasticsearch cluster, I cannot see the index on index management. But I can see after ticking hidden indices. Something change about the index on elk 8? And also winlogbeat creates a index called:
.ds-winlogbeat-8.0.0-2022.02.21-000001
Is that alright??
Thanks for the attention.
Yes that is fine. 8.0 uses datastreams to store the data.
What about the name convention winlogbeat-* dosent change a thing? I mean, dashboards, security and etc?
Thanks
I'm not sure how of the technical details at that level to be honest. There may be aliases or other things in place to handle it.
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.