elasticmachine
commented
1 year ago Pinging @elastic/security-external-integrations (Team:Security-External Integrations)
Open jmyns opened 1 year ago
elasticmachine
commented
1 year ago Pinging @elastic/security-external-integrations (Team:Security-External Integrations)
Currently the windows custom event integration only allows adding a single event channel. Add support for multiple event channels.
I noticed I can add multiple packages using the fleet api but kibana only shows the first package - so this may only require a minimal change in kibana to handle the package_policy array.
There are a few other feature requests which mention this as part of a larger enhancement.
https://github.com/elastic/integrations/issues/4564 https://github.com/elastic/integrations/issues/784