search

elastic / kibana

Your window into the Elastic Stack
https://www.elastic.co/products/kibana
Other
19.61k stars 8.22k forks source link

[SecuritySolution] Onboarding Hub revamp #189487

Open angorayc opened 3 months ago

angorayc commented 3 months ago

figma 1

figma 2

figma 3 - header card actions

PR: https://github.com/elastic/kibana/pull/192247

UX: @bfishel

Image

https://github.com/user-attachments/assets/1ac09761-689a-4bd3-90c4-a08b03c5524b

8.16 UI styling tasks:

### Tasks
- [x] Align the header styles with the latest design - https://github.com/elastic/kibana/pull/189969
- [x] Confirm if we want to display ESS license type (Trial, basic, platinum, enterprise ) / Serverless product tier (complete / essential) @bfishel
- [x] Confirm what to display in ESS for the `Invite teammates` card @bfishel
- [x] Confirm the behaviour of `watch the video` @bfishel
- [x] Create the feature flag - https://github.com/elastic/kibana/pull/189620/files
- [x] Do we want to use different videos for serverless / ESS ? @paulewing @bfishel

8.16 Data integration:

### Tasks
- [x] Decide the scope for 8.16 - styling changes + new integrations card but the integration configuration itself will exist in Fleet.
- [x] Get fleet's component ready to be reused in 8.17 - https://github.com/elastic/kibana/issues/189632 | https://github.com/elastic/kibana/pull/194028
- [x] ~Decide the name of the feature flag - `dataIngestionHubEnabled`~
- [x] Confirm the recommended tab
- [x] Confirm if we want to keep track of the completed steps  @bfishel
- [x] Create a Tabs component for rendering the integration category
- [x] Remove the redundant logic https://github.com/elastic/kibana/pull/192247

8.17 - issue for 8.17: https://github.com/elastic/kibana/issues/198820

### Tasks
- [ ] The integration configuration will exist in a modal of the onboarding hub.
- [ ] Reuse Fleet's component
- [ ] Users can install data in the onboarding hub without going to other page.
- [ ] Add a **progress indicator** component to be displayed at the top of the installation form. (Add integration > Config integration > Add agent)

Recommended integrations:

  1. AWS/GCP/Azure (include all three)
  2. Elastic Defend
  3. CrowdStrike (to promote our extended protections/3rd party EDR support)
  4. Wiz (or another cloud integration to promote extended protections)
  5. Network Packet Capture
  6. Osquery Manager
  7. Cloud Asset Inventory (need to confirm that's confirmed for 8.16)

Min. privilege for each card:


Integrations: Management > Integrations > Read + index privilege of `logs-elastic_agent*`
AI connectors: https://github.com/elastic/kibana/pull/198014
elasticmachine commented 3 months ago

Pinging @elastic/security-threat-hunting-explore (Team:Threat Hunting:Explore)

semd commented 4 weeks ago

The "Attack discovery" card has been dropped from the initial implementation, further work from the Design team is needed. We will enable it later when a final spec is provided.

cc: @agusruidiazgd @bfishel

angorayc commented 2 days ago

Integration card 8.17 scope please find https://github.com/elastic/kibana/issues/198820