Skip to content

BACKPORT 712 DOC Audit security config change (#66839)#67624

Merged
albertzaharovits merged 1 commit intoelastic:7.xfrom
albertzaharovits:backport_7x_docs_audit_request_body_for_certain_transport_requests
Jan 16, 2021
Merged

BACKPORT 712 DOC Audit security config change (#66839)#67624
albertzaharovits merged 1 commit intoelastic:7.xfrom
albertzaharovits:backport_7x_docs_audit_request_body_for_certain_transport_requests

Conversation

@albertzaharovits
Copy link
Copy Markdown
Contributor

@albertzaharovits albertzaharovits commented Jan 16, 2021

Backport of #66839

Audit log doc changes about:

  • the new security_config_change event type (main scope of this PR)
  • remove mentions of the 6.5 audit format changes (the JSON format)
  • mention the new archiving and rotation by size (in v8 only)
  • mention the request.id event attribute used to correlate audit events
  • mention that audit is only available on certain subscription levels
  • add an exhaustive audit event example list (because schema became too complex to explain in words 😢 given the new security_config_change events)
  • move the ignore policies are explained on a separate page (it was collocated with the logfile output since we had multiple outputs and the policies were specific the the logfile only).

Co-authored-by: Lisa Cawley lcawley@elastic.co

Relates #62916
Closes #29912

@albertzaharovits
DOC Audit security config change (elastic#66839)
f739ef6 
Audit log doc changes about:
* the new security_config_change event type (main scope of this PR)
* remove mentions of the 6.5 audit format changes (the JSON format)
* mention the new archiving and rotation by size (in v8 only)
* mention the request.id event attribute used to correlate audit events
* mention that audit is only available on certain subscription levels
* add an exhaustive audit event example list (because schema became too complex to explain in words 😢 given the new security_config_change events)
* move the ignore policies are explained on a separate page (it was collocated with the logfile output since we had multiple outputs and the policies were specific the the logfile only).

Co-authored-by: Lisa Cawley lcawley@elastic.co

Relates elastic#62916
Closes elastic#29912
@albertzaharovits albertzaharovits self-assigned this Jan 16, 2021
@albertzaharovits albertzaharovits added the >docs General docs changes label Jan 16, 2021
@elasticmachine elasticmachine added the Team:Docs Meta label for docs team label Jan 16, 2021
@elasticmachine
Copy link
Copy Markdown
Collaborator

elasticmachine commented Jan 16, 2021

Pinging @elastic/es-docs (Team:Docs)

@albertzaharovits albertzaharovits merged commit bc579a4 into elastic:7.x Jan 16, 2021
@albertzaharovits albertzaharovits deleted the backport_7x_docs_audit_request_body_for_certain_transport_requests branch January 16, 2021 18:16
albertzaharovits added a commit to albertzaharovits/elasticsearch that referenced this pull request Jan 16, 2021
@albertzaharovits
DOC Audit security config change (elastic#67624)
7d1a4a0 
Audit log doc changes about:
* the new security_config_change event type (main scope of this PR)
* remove mentions of the 6.5 audit format changes (the JSON format)
* mention the new archiving and rotation by size (in v8 only)
* mention the request.id event attribute used to correlate audit events
* mention that audit is only available on certain subscription levels
* add an exhaustive audit event example list (because schema became too complex to explain in words 😢 given the new security_config_change events)
* move the ignore policies are explained on a separate page (it was collocated with the logfile output since we had multiple outputs and the policies were specific the the logfile only).

Co-authored-by: Lisa Cawley lcawley@elastic.co

Relates elastic#62916
Closes elastic#29912
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

@albertzaharovits albertzaharovits

Labels

backport >docs General docs changes Team:Docs Meta label for docs team v7.12.0

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@albertzaharovits @elasticmachine