maxmustermann/kibana
1
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity

[Security Solution] Add Windows kernel advanced policy options for 7.15 (#111182)

Browse source
This commit is contained in:
Kevin Logan 2021-09-06 10:37:44 -04:00 committed by GitHub
parent d7e14ff72c
commit d9c5fa25cc
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 22 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

22
x-pack/plugins/security_solution/public/management/pages/policy/models/advanced_policy_schema.ts
View file

@ -584,6 +584,28 @@ export const AdvancedPolicySchema: AdvancedPolicySchemaType[] = [
}
),
},
{
key: 'windows.advanced.kernel.fileaccess',
first_supported_version: '7.15',
documentation: i18n.translate(
'xpack.securitySolution.endpoint.policy.advanced.windows.advanced.kernel.fileaccess',
{
defaultMessage:
'Report limited file access (read) events. Paths are not user-configurable. Default value is true.',
}
),
},
{
key: 'windows.advanced.kernel.registryaccess',
first_supported_version: '7.15',
documentation: i18n.translate(
'xpack.securitySolution.endpoint.policy.advanced.windows.advanced.kernel.registryaccess',
{
defaultMessage:
'Report limited registry access (queryvalue, savekey) events. Paths are not user-configurable. Default value is true.',
}
),
},
{
key: 'windows.advanced.diagnostic.enabled',
first_supported_version: '7.11',