Use Elasticsearch to store NetApp StorageGRID audit log and build search index for objects
Prior to StorageGRID 11.6, StorageGRID couldn't forward audit log to external syslog servers. You had to copy it off the primary admin node, convert to JSON and upload.
https://github.com/scaleoutsean/storagegrid-audit-analysis
Version 11.6 has audit log forwarding.
This demo shows StorageGRID 11.7 and Elasticsearch 8.7.1:
a) Audit log forwarding: forwards audit log to Logstash which processes it and forwards to Elasticsearch
See https://docs.netapp.com/us-en/storagegrid-enable/tools-apps-guides/elk-instructions.html for more.
b) Platform services (search): configure StorageGRID to send event updates to Elasticsearch API endpoint. These updates are JSON files with system and object metadata, and allow us to search for various properties in Elasticsearch.
See https://docs.netapp.com/us-en/storagegrid-117/tenant/using-search-integration-service.html
-
LIVE
Due Dissidence
7 hours agoTrump SMITTEN By Mamdani, MTG RESIGNS, Hurwitz DOUBLES DOWN on CENSORSHIP, RFK Jr "Poetry" EXPOSED
910 watching -
39:40
Tactical Advisor
4 hours agoUnboxing New Tactical Packs | Vault Room Live Stream 046
48.3K5 -
LIVE
elwolfpr
1 hour agoElWolfPRX Enters the Storm: First Winds
32 watching -
14:59
MetatronHistory
17 hours agoAncient Bronze Was Not the Way You Think
21.1K6 -
LIVE
Misfit Electronic Gaming
3 hours ago"LIVE" WolfPack hunting "ARC RAIDERS" Come Hang out with me.
28 watching -
5:36:21
DeadMomAlive
6 hours agoSuper Hero Sundays Wonder Woman! BIRTHDAY WEEK!!!!!
15.6K2 -
20:19
RiftTV
1 day agoKash Patel's GF Is Suing MAGA Influencers for Jokes & Memes | Amy Dangerfield
31.3K30 -
6:12:28
StuffCentral
6 hours agoRest here with Stuffy
19.5K -
LIVE
Reidboyy
16 hours ago $1.10 earned24/7 BO7 Camo Grind! Stream Doesn't End Until I Unlock EVERY Camo in Black Ops 7!
53 watching -
23:46
iCkEdMeL
4 hours ago $1.98 earned🔴 Anna Kepner Case: 3AM Warning and Cabin Screaming Reveal Terrifying Timeline
21.9K4