maxmustermann/kibana
1
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity

Add remaining descriptions to security usage telemetry schema. (#100454)

Browse source
This commit is contained in:
Pete Hampton 2021-05-24 17:41:19 +01:00 committed by GitHub
parent ebf77da99b
commit bb6c2ef3d0
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
2 changed files with 139 additions and 34 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

88
x-pack/plugins/security_solution/server/usage/collector.ts
View file

@ -46,22 +46,46 @@ export const registerCollector: RegisterCollector = ({
detections: {
detection_rules: {
custom: {
enabled: { type: 'long' },
disabled: { type: 'long' },
enabled: {
type: 'long',
_meta: { description: 'The number of custom detection rules enabled' },
},
disabled: {
type: 'long',
_meta: { description: 'The number of custom detection rules disabled' },
},
},
elastic: {
enabled: { type: 'long' },
disabled: { type: 'long' },
enabled: {
type: 'long',
_meta: { description: 'The number of elastic prebuilt detection rules enabled' },
},
disabled: {
type: 'long',
_meta: { description: 'The number of elastic prebuilt detection rules disabled' },
},
},
},
ml_jobs: {
custom: {
enabled: { type: 'long' },
disabled: { type: 'long' },
enabled: {
type: 'long',
_meta: { description: 'The number of custom ML jobs rules enabled' },
},
disabled: {
type: 'long',
_meta: { description: 'The number of custom ML jobs rules disabled' },
},
},
elastic: {
enabled: { type: 'long' },
disabled: { type: 'long' },
enabled: {
type: 'long',
_meta: { description: 'The number of elastic provided ML jobs rules enabled' },
},
disabled: {
type: 'long',
_meta: { description: 'The number of elastic provided ML jobs rules disabled' },
},
},
},
},
@ -398,22 +422,52 @@ export const registerCollector: RegisterCollector = ({
},
},
endpoints: {
total_installed: { type: 'long' },
active_within_last_24_hours: { type: 'long' },
total_installed: {
type: 'long',
_meta: { description: 'The number of installed endpoints' },
},
active_within_last_24_hours: {
type: 'long',
_meta: { description: 'The number of active endpoints' },
},
os: {
type: 'array',
items: {
full_name: { type: 'keyword' },
platform: { type: 'keyword' },
version: { type: 'keyword' },
count: { type: 'long' },
full_name: {
type: 'keyword',
_meta: { description: 'Full name of the operating system' },
},
platform: {
type: 'keyword',
_meta: { description: 'OS Platform. eg Centos, Ubuntu' },
},
version: {
type: 'keyword',
_meta: {
description:
'The version of the operating system, eg 16.04.7 LTS (Xenial Xerus), 8 (Core)',
},
},
count: {
type: 'long',
_meta: { description: 'The total number of endpoints from that platform' },
},
},
},
policies: {
malware: {
active: { type: 'long' },
inactive: { type: 'long' },
failure: { type: 'long' },
active: {
type: 'long',
_meta: { description: 'The total number of active malware policies' },
},
inactive: {
type: 'long',
_meta: { description: 'The total number of inactive malware policies' },
},
failure: {
type: 'long',
_meta: { description: 'The total number of failing malware policies' },
},
},
},
},

85
x-pack/plugins/telemetry_collection_xpack/schema/xpack_plugins.json
View file

@ -4671,20 +4671,32 @@
"custom": {
"properties": {
"enabled": {
"type": "long"
"type": "long",
"_meta": {
"description": "The number of custom detection rules enabled"
}
},
"disabled": {
"type": "long"
"type": "long",
"_meta": {
"description": "The number of custom detection rules disabled"
}
}
}
},
"elastic": {
"properties": {
"enabled": {
"type": "long"
"type": "long",
"_meta": {
"description": "The number of elastic prebuilt detection rules enabled"
}
},
"disabled": {
"type": "long"
"type": "long",
"_meta": {
"description": "The number of elastic prebuilt detection rules disabled"
}
}
}
}
@ -4695,20 +4707,32 @@
"custom": {
"properties": {
"enabled": {
"type": "long"
"type": "long",
"_meta": {
"description": "The number of custom ML jobs rules enabled"
}
},
"disabled": {
"type": "long"
"type": "long",
"_meta": {
"description": "The number of custom ML jobs rules disabled"
}
}
}
},
"elastic": {
"properties": {
"enabled": {
"type": "long"
"type": "long",
"_meta": {
"description": "The number of elastic provided ML jobs rules enabled"
}
},
"disabled": {
"type": "long"
"type": "long",
"_meta": {
"description": "The number of elastic provided ML jobs rules disabled"
}
}
}
}
@ -5195,26 +5219,44 @@
"endpoints": {
"properties": {
"total_installed": {
"type": "long"
"type": "long",
"_meta": {
"description": "The number of installed endpoints"
}
},
"active_within_last_24_hours": {
"type": "long"
"type": "long",
"_meta": {
"description": "The number of active endpoints"
}
},
"os": {
"type": "array",
"items": {
"properties": {
"full_name": {
"type": "keyword"
"type": "keyword",
"_meta": {
"description": "Full name of the operating system"
}
},
"platform": {
"type": "keyword"
"type": "keyword",
"_meta": {
"description": "OS Platform. eg Centos, Ubuntu"
}
},
"version": {
"type": "keyword"
"type": "keyword",
"_meta": {
"description": "The version of the operating system, eg 16.04.7 LTS (Xenial Xerus), 8 (Core)"
}
},
"count": {
"type": "long"
"type": "long",
"_meta": {
"description": "The total number of endpoints from that platform"
}
}
}
}
@ -5224,13 +5266,22 @@
"malware": {
"properties": {
"active": {
"type": "long"
"type": "long",
"_meta": {
"description": "The total number of active malware policies"
}
},
"inactive": {
"type": "long"
"type": "long",
"_meta": {
"description": "The total number of inactive malware policies"
}
},
"failure": {
"type": "long"
"type": "long",
"_meta": {
"description": "The total number of failing malware policies"
}
}
}
}