Hi, since I upgrade to 7.6.0 (Kibana, Elasticsearch, Winlogbeat) I get from my Domaincontroller not all log's.
I use the default config from Winlogbeat (winlogbeat.yml) I only change my elasticsearchhost
i have no ideas where the problem is. I have also other maschines where the same config are working.
regards Marcel
ok today i was able to limit the problem. When creating the indexes with the command. \ Winlogbeat.exe setup --index-management -E output.logstash.enabled = false -E 'output.elasticsearch.hosts = ["localhost: 9200"]'
no fields are created in version 7.6.0 under index.query.default_field "...
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.