Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- ###################### Winlogbeat Configuration Example ##########################
- # This file is an example configuration file highlighting only the most common
- # options. The winlogbeat.full.yml file from the same directory contains all the
- # supported options with more comments. You can use it as a reference.
- #
- # You can find the full configuration reference here:
- # https://www.elastic.co/guide/en/beats/winlogbeat/index.html
- #======================= Winlogbeat specific options ==========================
- # event_logs specifies a list of event logs to monitor as well as any
- # accompanying options. The YAML data type of event_logs is a list of
- # dictionaries.
- #
- # The supported keys are name (required), tags, fields, fields_under_root,
- # forwarded, ignore_older, level, event_id, provider, and include_xml. Please
- # visit the documentation for the complete details of each option.
- # https://go.es.io/WinlogbeatConfig
- winlogbeat.event_logs:
- - name: Application
- ignore_older: 72h
- - name: Security
- - name: System
- #================================ General =====================================
- # The name of the shipper that publishes the network data. It can be used to group
- # all the transactions sent by a single shipper in the web interface.
- #name:
- # The tags of the shipper are included in their own field with each
- # transaction published.
- #tags: ["service-X", "web-tier"]
- # Optional fields that you can specify to add additional information to the
- # output.
- #fields:
- # env: staging
- #================================ Outputs =====================================
- # Configure what outputs to use when sending the data collected by the beat.
- # Multiple outputs may be used.
- #-------------------------- Elasticsearch output ------------------------------
- #output.elasticsearch:
- # Array of hosts to connect to.
- # hosts: ["192.168.70.109:9200"]
- # template.name: "winlogbeat"
- # template.path: "winlogbeat.template.json"
- # template.overwrite: false
- # Optional protocol and basic auth credentials.
- #protocol: "https"
- #username: "elastic"
- #password: "changeme"
- #----------------------------- Logstash output --------------------------------
- output.logstash:
- # The Logstash hosts
- hosts: ["192.168.70.110:5044"]
- # Optional SSL. By default is off.
- # List of root certificates for HTTPS server verifications
- #ssl.certificate_authorities: ["/etc/pki/root/ca.pem"]
- # Certificate for SSL client authentication
- #ssl.certificate: "/etc/pki/client/cert.pem"
- # Client Certificate Key
- #ssl.key: "/etc/pki/client/cert.key"
- #================================ Logging =====================================
- # Sets log level. The default log level is info.
- # Available log levels are: critical, error, warning, info, debug
- #logging.level: debug
- # At debug level, you can selectively enable logging only for some components.
- # To enable all selectors use ["*"]. Examples of other selectors are "beat",
- # "publish", "service".
- #logging.selectors: ["*"]
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement