Improving Log Analysis with Device ID Ratios inside Elasticsearch

Overview Ratios Power Context - Log analysis is less about raw numbers than ratios. Ratios put numbers in context. A security analyst follows multiple ratios and gains a sense of what is a heal...
Published Jun 29, 2021
Version 1.0
ASM Advanced WAF
F5 Device ID+
security
series-device-id-plus
Smith787's avatar
Smith787
Icon for Nimbostratus rankNimbostratus
Jul 01, 2021

Starting with Version 5 ElasticSearch charges money for this functionality. It's called "Audit log" and is now part of X-Pack. There is a basic license available that is free, but this license only gives you a simplistic monitoring functionality. Authentication, query logging and all these rather basic things cost money now.