Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[SIEM] Update Maps error message/docs to detail that matching index patterns are required #52312

Closed
spong opened this issue Dec 5, 2019 · 2 comments
Closed

[SIEM] Update Maps error message/docs to detail that matching index patterns are required #52312

spong opened this issue Dec 5, 2019 · 2 comments
Assignees
@benskelker
Labels
enhancement New value added to drive a business result Team:SIEM

Comments

@spong
Copy link
Member

spong commented Dec 5, 2019

When the map can't locate a Kibana Index Pattern that matches one of the index globs configured in the siem:defaultIndex advanced setting the Required index patterns not configured error is displayed.

With the current message displayed it is not obvious that the user must have a Kibana Index Pattern that exactly matches one of the siem:defaultIndex indices for the map to load. Adding this detail to the error message and/or Map configuration help link would aid in situations where users specify their own indices outside the typical beats setup/configuration, and are not seeing the map load.

image
@spong spong added enhancement New value added to drive a business result Team:SIEM labels Dec 5, 2019
@elasticmachine
Copy link
Contributor

Pinging @elastic/siem (Team:SIEM)

@spong spong mentioned this issue Dec 6, 2019
Closed
This was referenced Dec 8, 2019
Merged
Merged
@FrankHassanabad
Copy link
Contributor

"Reviewed by Frank Hassanabad on 7/29/2020", This looks complete and will be shippable at this point. Going to close this and associated tickets. Any new bugs/features should be new tickets.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@benskelker benskelker

Labels
enhancement New value added to drive a business result Team:SIEM
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@FrankHassanabad @spong @elasticmachine @benskelker