maxmustermann/kibana
1
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity

[DOCS] Updates introduction doc (#108122) (#112295)

Browse source 
* [DOCS] Updates What's new doc

* [DOCS] Updates images of home page

* [DOCS] Updates the analyze section

* Updates the visualization journey image

* Update docs/user/introduction.asciidoc

Co-authored-by: Lisa Cawley <lcawley@elastic.co>

* [DOCS] Removes apps and points to feature page instead

* Update docs/user/introduction.asciidoc

* Update docs/user/introduction.asciidoc

* Update docs/user/introduction.asciidoc

* Update docs/user/introduction.asciidoc

Co-authored-by: Kibana Machine <42973632+kibanamachine@users.noreply.github.com>
Co-authored-by: KOTungseth <kaarina.tungseth@elastic.co>
Co-authored-by: Lisa Cawley <lcawley@elastic.co>

Co-authored-by: gchaps <33642766+gchaps@users.noreply.github.com>
Co-authored-by: Kibana Machine <42973632+kibanamachine@users.noreply.github.com>
Co-authored-by: Lisa Cawley <lcawley@elastic.co>
This commit is contained in:
Kaarina Tungseth 2021-09-15 10:44:37 -05:00 committed by GitHub
parent 40148e8eff
commit 5cc356015b
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
4 changed files with 73 additions and 257 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

BIN
docs/user/images/analytics-home-page.png Normal file
View file

Binary file not shown.
Side by side

After

Width:  |  Height:  |  Size: 372 KiB

BIN
docs/user/images/kibana-main-menu.png
View file

Binary file not shown.
Side by side Swipe Overlay

Before

Width:  |  Height:  |  Size: 420 KiB

After

Width:  |  Height:  |  Size: 424 KiB

BIN
docs/user/images/visualization-journey.png
View file

Binary file not shown.
Side by side Swipe Overlay

Before

Width:  |  Height:  |  Size: 149 KiB

After

Width:  |  Height:  |  Size: 190 KiB

330
docs/user/introduction.asciidoc
View file

@ -11,60 +11,31 @@ shape to your data and navigate the Elastic Stack. With {kib}, you can:
From discovering documents to analyzing logs to finding security vulnerabilities,
{kib} is your portal for accessing these capabilities and more.
* *Visualize and analyze your data.*
* *Analyze your data.*
Search for hidden insights, visualize what you've found in charts, gauges,
maps and more, and combine them in a dashboard.
maps, graphs, and more, and combine them in a dashboard.
* *Manage, monitor, and secure the Elastic Stack.*
Manage your indices and ingest pipelines, monitor the health of your
Manage your data, monitor the health of your
Elastic Stack cluster, and control which users have access to
which features.
++++
<script type="text/javascript" async src="https://play.vidyard.com/embed/v4.js">
</script>
<img
style="width: 100%; margin: auto; display: block;"
class="vidyard-player-embed"
src="https://play.vidyard.com/iyqMwJcvi8r4YfjeoPMjyH.jpg"
data-uuid="iyqMwJcvi8r4YfjeoPMjyH"
data-v="4"
data-type="inline"
/>
</br>
++++
[[kibana-home-page]]
[role="screenshot"]
image::images/analytics-home-page.png[Analytics home page]
*{kib} is for administrators, analysts, and business users.*
As an admin, your role is to manage the Elastic Stack, from creating your
deployment to getting {es} data into {kib}, and then
managing the data. As an analyst, your job is to discover insights
managing the data. As an analyst, you're looking to discover insights
in the data, visualize your data on dashboards, and share your findings. As a business user,
you want to view existing dashboards and drill down into details.
*{kib} works with all types of data.* Your data can be structured or unstructured text,
numerical data, time-series data, geospatial data, logs, metrics, security events,
and more. Kibana is designed to use Elasticsearch as a data store.
numerical data, time series data, geospatial data, logs, metrics, security events,
and more.
No matter your data, {kib} can help you uncover patterns and relationships and visualize the results.
[float]
[[kibana-home-page]]
=== Where to start
Start with the home page, where youre presented options for adding your data.
You can collect data from an app or service or upload a file that contains your data.
If youre not ready to use your own data, you can add a sample data set.
The home page provides access to the *Enterprise Search*, *Observability*, and *Security* solutions,
and everything you need to visualize and analyze your data.
To access all of {kib} features, use the main menu.
Open this menu by clicking the
menu icon.
For a quick reference of all {kib} features, refer to <<whats-the-right-app,Whats the right app for you?>>
[role="screenshot"]
image::images/kibana-main-menu.png[Kibana main menu]
[float]
[[extend-your-use-case]]
=== Search, observe, and protect
@ -82,12 +53,13 @@ that it ran in, trace the transaction, and check the overall service availabilit
the events and alerts from your environment. Elastic Security helps you defend
your organization from threats before damage and loss occur.
[float]
[[visualize-and-analyze]]
=== Visualize and analyze
=== Analyze
Data analysis is a core functionality of {kib}.
You can quickly search through large amounts of data, explore fields and values,
Data analysis is a core functionality of {kib}. Quickly search through large amounts
of data, explore fields and values,
and then use {kib}s drag-and-drop interface to rapidly build charts, tables, metrics, and more.
[role="screenshot"]
@ -108,14 +80,17 @@ You can limit your results to the most recent documents added to {es}.
| *3*
| *Visualize.* {kib} provides many options to create visualizations of your data, from
aggregation-based data to time series data.
aggregation-based data to time series data to geo data.
<<dashboard, *Dashboard*>> is your starting point to create visualizations,
and then pulling them together to show your data from multiple perspectives.
Use <<canvas, *Canvas*>>,
to give your data
the “wow” factor for display on a big screen. Use *Graph* to explore patterns and relationships.
| *4*
| *Present.* With <<canvas, *Canvas*>>, you can display your data on a visually
compelling, pixel-perfect workpad. **Canvas** can give your data
the “wow” factor needed to impress your CEO and captivate coworkers with a big-screen display.
| *Model data behavior.*
Use <<xpack-ml, *{ml-cap}*>> to model the behavior of your data&mdash;forecast unusual behavior and
perform outlier detection, regression, and classification analysis.
| *5*
| *Share.* Ready to <<reporting-getting-started, share>> your findings with a larger audience? {kib} offers many options&mdash;embed
@ -123,50 +98,9 @@ a dashboard, share a link, export to PDF, and more.
|===
[float]
==== Plot location data on a map
If youre looking to better understand the “where in your data, your data
analysis journey will also include <<maps, *Maps*>>. This app is the right
choice when youre looking for a spatial pattern, performing ad-hoc location-driven analysis,
or analyzing metrics with a geographic perspective. With *Maps*, you can build
world country maps, administrative region maps, and point-to-point origin-destination maps.
You can also visualize and track movement over space and through time.
=== Manage your data
[float]
==== Model data behavior
To model the behavior of your data, you'll use
<<xpack-ml, *{ml-cap}*>>.
This app can help you extract insights from your data that you might otherwise miss.
You can forecast unusual behavior in your time series data.
You can also perform outlier detection, regression, and classification analysis
on your data and generate annotated results.
[float]
==== Graph relationships
Looking to uncover how items in your data are related?
<<xpack-graph, *Graph*>> is your app. Graphing relationships is useful in a variety of use cases,
from fraud detection to recommendation engines. For example, graph exploration
can help you uncover website vulnerabilities that hackers are targeting,
so you can harden your website. Or, you might provide graph-based
personalized recommendations to your e-commerce customers.
[float]
[[manage-all-things-stack]]
=== Manage all things Elastic Stack
{kib}'s <<management, *Management*>> UIs takes you under the hood,
so you can twist the levers and turn the knobs. You'll find
guided processes for administering all things Elastic Stack,
including data, indices, clusters, alerts, and security.
[role="screenshot"]
image::images/stack-management.png[Index Management view in Stack Management]
[float]
==== Manage your data, indices, and clusters
{kib} offers these data management tasks&mdash;all from the convenience of a UI:
{kib} helps you perform your data management tasks from the convenience of a UI. You can:
* Refresh, flush, and clear the cache of your indices.
* Define the lifecycle of an index as it ages.
@ -174,71 +108,64 @@ image::images/stack-management.png[Index Management view in Stack Management]
* Roll up data from one or more indices into a new, compact index.
* Replicate indices on a remote cluster and copy them to a local cluster.
For a full list of data management UIs, refer to <<management, *Stack Management*>>.
[role="screenshot"]
image::images/stack-management.png[Index Management view in Stack Management]
[float]
==== Alert and take action
=== Alert and take action
Detecting and acting on significant shifts and signals in your data is a need
that exists in almost every use case. For example, you might set a rule to notify you when:
that exists in almost every use case. Alerting allows you to
detect conditions in different {kib} apps and trigger actions when those conditions are met.
For example, you might trigger an alert when a shift occurs in your business critical KPIs or when
memory, CPU, or disk space take a dip.
When the alert triggers, you can send a notification to a system that is part of your daily workflow:
email, Slack, PagerDuty, ServiceNow, and other third party integrations.
* A shift occurs in your business critical KPIs.
* System resources, such as memory, CPU and disk space, take a dip.
* An unusually high number of service requests, suspicious processes, and login attempts occurs.
A rule triggers when a specified condition is met. For example,
you can create a rule when the average or max of one of
your metrics exceeds a threshold within a specified time frame.
When the rule triggers, you can send a notification to a system that is part of
your daily workflow. {kib} integrates with email, Slack, PagerDuty, and ServiceNow,
to name a few.
A dedicated view for creating, searching, and editing rules is in <<create-and-manage-rules,*Rules and Connectors*>>.
A dedicated view for creating, searching,
and editing rules is in <<create-and-manage-rules,*Rules and Connectors*>>
[role="screenshot"]
image::images/rules-and-connectors.png[Rules and Connectors view]
[float]
[[organize-and-secure]]
=== Organize your work in spaces
=== Organize content
Want to share {kib}s goodness with other people or teams without overwhelming them? You can do so
with <<xpack-spaces, Spaces>>, built for organizing your visualizations, dashboards, and index patterns.
You might be managing tens, hundreds, or even thousands of dashboards, visualizations, and other {kib} assets.
{kib} has several features for keeping your content organized.
[float]
[[organize-in-spaces]]
==== Collect related items in a space
{kib}
<<xpack-spaces, Spaces>> is built for organizing your visualizations, dashboards, and {data-sources}.
Think of a space as its own mini {kib} installation&mdash;its isolated from all other spaces,
so you can tailor it to your specific needs without impacting others.
[role="screenshot"]
image::images/select-your-space.png[Space selector view]
Most of {kib}s entities are space-aware, including dashboards, visualizations, index patterns,
*Canvas* workpads, graphs, tags, and machine learning jobs.
In addition:
* **Elastic Security** is space-aware, so the timelines and investigations
you open in one space will not be available to other spaces.
* **Observability** is currently partially space-aware, but will be enhanced to become fully space-aware.
* Most of the **Stack Management** features are not space aware because they
are primarily used to manage features of {es}, which serves as a shared data store for all spaces.
* Alerts are space-aware and work nicely with the {kib} role-based access control
model to allow you secure access to them, depending on the alert type and your user roles.
For example, roles with no access to an app will not have access to its alerts.
[role="screenshot"]
image::images/select-your-space.png[Space selector view]
[float]
==== Control feature visibility
==== Organize your content with tags
You can take spaces one step further and control which features are visible
within each space. For example, you might hide **Dev Tools** in your "Marketing"
space or show **Stack Monitoring** only in your "Engineering" space.
Tags are keywords or labels that you assign to {kib} saved objects,
such as dashboards and visualizations, so you can classify them in a way that is meaningful to you.
For example, if you tag objects with “design”, you can search and
filter on the tag to see related objects.
Tags are also good for grouping content into categories within a space.
Controlling feature visibility is not a security feature. To secure access
to specific features on a per-user basis, you must configure
<<xpack-security-authorization,{kib} Security>>.
[role="screenshot"]
image::spaces/images/edit-space-feature-visibility.png[Features Controls view]
Dont worry if you have hundreds of dashboards that need to be tagged. Use <<managing-tags,*Tags*>>
in *Stack Management* to create your tags, then assign and delete
them in bulk operations.
[float]
[[intro-kibana-Security]]
@ -291,22 +218,14 @@ users behavior. For more information, see <<xpack-security-audit-logging,{kib
[[kibana-navigation-search]]
=== Quickly find apps and objects
Using the search field in the global header, you can
search for applications and objects, such as
dashboards and visualizations. Search suggestions include deep links into applications,
To find {kib} apps and the objects you create, use the search field in the global header.
Search suggestions include deep links into applications,
allowing you to directly navigate to the views you need most.
[role="screenshot"]
image::images/app-navigation-search.png[Example of searching for apps]
When searching for objects, you can search by type, name, and tag.
Tags are keywords or labels that you assign to {kib} objects,
so you can classify the objects in a way that is meaningful to you.
You can then quickly search for related objects based on shared tags.
[role="screenshot"]
image::images/tags-search.png[Example of searching for tags]
You can search for objects by type, name, and tag.
To get the most from the search feature, follow these tips:
* Use the keyboard shortcut&mdash;Ctrl+/ on Windows and Linux, Command+/ on MacOS&mdash;to focus on the input at any time.
@ -333,125 +252,22 @@ Available types: `application`, `canvas-workpad`, `dashboard`, `index-pattern`,
`type:(dashboard or canvas-workpad) logs` +
|===
This example searches for visualizations with the tag `design` .
[role="screenshot"]
image::images/tags-search.png[Example of searching for tags]
[float]
[[whats-the-right-app]]
=== Whats the right app for you?
=== View all {kib} has to offer
{kib} has a wealth of apps, each with its own area of specialty.
Scan this table to quickly find the app that gets you to our goal.
[cols=2*]
|===
2+| *Get started*
|Get {kib}
|https://www.elastic.co/cloud/elasticsearch-service/signup[Sign up for a free trial] and start exploring data in minutes.
|Dont know where to begin
|The home page. If youre looking to explore and visualize your data, follow
the <<get-started,{kib} Quick start>>.
|Add data
|The Add data page, available from the home page.
|See the full list of {kib} features
|The https://www.elastic.co/kibana/features[{kib} features page on elastic.co]
2+|*Build a search experience*
|Create a search experience for your workplace
|https://www.elastic.co/guide/en/workplace-search/current/workplace-search-getting-started.html[Workplace Search]
|Build a search experience for your app
|https://www.elastic.co/guide/en/app-search/current/getting-started.html[App Search]
2+|*Monitor, analyze, and react to events*
|Monitor software services and applications in real-time by collecting performance information
|{observability-guide}/apm.html[APM]
|Monitor the availability of your sites and services
|{observability-guide}/monitor-uptime.html[Uptime]
|Search, filter, and tail all your logs
|{observability-guide}/monitor-logs.html[Logs]
|Analyze metrics from your infrastructure, apps, and services
|{observability-guide}/analyze-metrics.html[Metrics]
2+|*Prevent, detect, and respond to threats*
|Create and manage rules for suspicious source events, and view the alerts these rules create.
|{security-guide}/detection-engine-overview.html[Detections]
|View all hosts and host-related security events.
|{security-guide}/hosts-overview.html[Hosts]
|View key network activity metrics via an interactive map.
|{security-guide}/network-page-overview.html[Network]
|Investigate alerts and complex threats, such as lateral movement of malware across hosts in your network.
|{security-guide}/timelines-ui.html[Timelines]
|Create and track security issues
|{security-guide}/cases-overview.html[Cases]
|View and manage hosts that are running Endpoint Security
|{security-guide}/admin-page-ov.html[Administration]
2+| *Analyze and visualize your data*
|Know whats in your data
|<<discover,Discover>>
|Create charts and other visualizations
|<<dashboard, Dashboard>>
|Show your data from different perspectives
|<<dashboard, Dashboard>>
|Work with location data
|<<maps, Maps>>
|Create a presentation of your data
|<<canvas, Canvas>>
|Generate models for your datas behavior
|<<xpack-ml, {ml-cap}>>
|Explore connections in your data
|<<xpack-graph, Graph>>
|Share your data
|<<dashboard, Dashboard>>, <<canvas, Canvas>>, <<discover,Discover>>
2+|*Administer your Kibana instance*
|Manage your Elasticsearch data
|<<manage-data,Stack Management > Data>>
|Set up rules
|<<create-and-manage-rules,Stack Management > Rules and Connectors>>
|Organize your workspace and users
|<<xpack-spaces,Stack Management > Spaces>>
|Define user roles and privileges
|<<xpack-security,Stack Management > Users>>
|Customize {kib} to suit your needs
|<<advanced-options,Stack Management > Advanced Settings>>
|===
To view the full list of {kib} apps and features, go to https://www.elastic.co/kibana/features[{kib} features].
[float]
[[try-kibana]]
=== How to get help
=== Get help
Using our in-product guidance can help you get up and running, faster.
Click the help icon image:images/intro-help-icon.png[Help icon in navigation bar]
Click image:images/intro-help-icon.png[Help icon in navigation bar]
for help with questions or to provide feedback.
To keep up with whats new and changed in Elastic, click the celebration icon in the global header.