Open jvalente-salemstate opened 5 months ago
The Tenable.io API exposes an Audit User Activity endpoint. This is not being collected by the integration.
Adding a data stream for this would allow retention and correlation of audit logs, as well as opportunities for security monitoring and alerting of activity within Tenable.io
Pinging @elastic/security-service-integrations (Team:Security-Service Integrations)
The Tenable.io API exposes an Audit User Activity endpoint. This is not being collected by the integration.
Adding a data stream for this would allow retention and correlation of audit logs, as well as opportunities for security monitoring and alerting of activity within Tenable.io