Use Elasticsearch to store NetApp StorageGRID audit log and build search index for objects
Prior to StorageGRID 11.6, StorageGRID couldn't forward audit log to external syslog servers. You had to copy it off the primary admin node, convert to JSON and upload.
https://github.com/scaleoutsean/storagegrid-audit-analysis
Version 11.6 has audit log forwarding.
This demo shows StorageGRID 11.7 and Elasticsearch 8.7.1:
a) Audit log forwarding: forwards audit log to Logstash which processes it and forwards to Elasticsearch
See https://docs.netapp.com/us-en/storagegrid-enable/tools-apps-guides/elk-instructions.html for more.
b) Platform services (search): configure StorageGRID to send event updates to Elasticsearch API endpoint. These updates are JSON files with system and object metadata, and allow us to search for various properties in Elasticsearch.
See https://docs.netapp.com/us-en/storagegrid-117/tenant/using-search-integration-service.html
-
2:04
scaleoutSean's demos and how-to's
1 year agoNetApp Cloud Sync API and Elasticsearch
9 -
5:33
toughcoding experience of Tom D
7 months agoExport Data from Elasticsearch - Logstash
1 -
18:57
toughcoding
10 months agoElasticsearch backup & restore to S3 SIA using docker swarm with secrets
13 -
7:01
Exam Lab Practice
1 year agoAzure Audit Logs
1 -
6:52
JowersTechnologySolutions
3 years agoManaging Elasticsearch Disk Usage
24 -
5:59
Solve Computer Science
1 year agoFull text search in Nextcloud
43 -
22:18
JowersTechnologySolutions
3 years agoConfiguring Elasticsearch Clusters
19 -
0:30
One Base Media
3 months agoHow To Install Analytics & Search Console In WordPress Using Site Kit!
1 -
18:57
toughcoding experience of Tom D
10 months agoElasticsearch backup & restore to S3 SIA using docker swarm with secrets
7 -
4:59
Exam Lab Practice
1 year agoAzure Monitor Logging using a Log Analytics Workspace
7