Import to update current dashboard

StamusNetworks / KTS7

Kibana 7 Templates for Suricata IDPS Threat Hunting

GNU General Public License v3.0

38 stars 11 forks source link

Import to update current dashboard #4

Closed atbohmer closed 3 years ago

atbohmer commented 3 years ago

Hello, Already running an ELK setup with KTS7, but how to updates these dashboards? When running the curl import commands, it complains of conflicting indices. Logical because they already exist, but nothing is now imported. Removed kibana alias and indices and started a new import but to no avail. Cheers, Andre

pevma commented 3 years ago

You can then simply upload the same ndjson files from the Kibana web management interface or simply run a the selks-upgrade_stamus script after which you would need to reload the dashboards.

atbohmer commented 3 years ago

Running a custom setup on RedHat EL 7, so no Selks/stamus distro. But via Stack Management Saved objects Import I was able to import the ndjson files and all dashboards seem to be back again. Thanks!

pevma commented 3 years ago

Glad to hear it went ok!