Skip to content

Commit

Permalink
[WIP] Clarify capabilities of the Filebeat auditd module (elastic#17068
Browse files Browse the repository at this point in the history
…) (elastic#18886)

* Update filebeat/docs/modules/auditd.asciidoc

Update `filebeat/docs/modules/auditd.asciidoc` - Add note regarding capabilities of the Filebeat auditd module

* Edit text and run make update

* Run make update again

Co-authored-by: DeDe Morton <dede.morton@elastic.co>

Co-authored-by: Rob Waight <43173714+rwaight@users.noreply.github.com>
  • Loading branch information
dedemorton and rwaight authored Jun 2, 2020
1 parent 168cbc2 commit bd39fd1
Show file tree
Hide file tree
Showing 2 changed files with 8 additions and 0 deletions.
4 changes: 4 additions & 0 deletions filebeat/docs/modules/auditd.asciidoc
Original file line number Diff line number Diff line change
Expand Up @@ -11,6 +11,10 @@ This file is generated! See scripts/docs_collector.py
The +{modulename}+ module collects and parses logs from the audit daemon
(`auditd`).

NOTE: Although {beatname_uc} is able to parse logs by using the `auditd` module,
{auditbeat-ref}/auditbeat-module-auditd.html[{auditbeat}] offers more advanced
features for monitoring audit logs.

include::../include/what-happens.asciidoc[]

include::../include/gs-link.asciidoc[]
Expand Down
4 changes: 4 additions & 0 deletions filebeat/module/auditd/_meta/docs.asciidoc
Original file line number Diff line number Diff line change
Expand Up @@ -6,6 +6,10 @@
The +{modulename}+ module collects and parses logs from the audit daemon
(`auditd`).

NOTE: Although {beatname_uc} is able to parse logs by using the `auditd` module,
{auditbeat-ref}/auditbeat-module-auditd.html[{auditbeat}] offers more advanced
features for monitoring audit logs.

include::../include/what-happens.asciidoc[]

include::../include/gs-link.asciidoc[]
Expand Down

0 comments on commit bd39fd1

Please sign in to comment.