search

elastic / security-docs

Elastic Security Documentation
Other
69 stars 183 forks source link

[Serverless]: Security - Visual event analyzer advanced setting not in serverless #6017

Open joepeeples opened 4 weeks ago

joepeeples commented 4 weeks ago

Serverless Docs

Elastic Security

Description

This tip on the Visual event analyzer page mentions and links to an advanced setting that doesn't appear to be available in serverless:


The link points to this section on the Advanced settings page:


As far as I can tell, the excludeColdAndFrozenTiersInAnalyzer advanced setting isn't available in serverless, probably because serverless doesn't provide direct access to data tiers. We'll need to verify this, but if so then both of these sections should be removed from the serverless docs. Also double-check to make sure the serverless docs don't have any other references to this setting.

Resources and additional context

n/a

nastasha-solomon commented 1 day ago

Followed up with @christineweng to check whether this setting is available in Serverless. Also searched the Serverless docs for mentions of/references to the securitySolution:excludeColdAndFrozenTiersInAnalyzer setting and didn't find any outside of what's already identified in the doc issue.

nastasha-solomon commented 1 day ago

Doc issue that added the Serverless docs: https://github.com/elastic/security-docs/issues/4387

Will need to follow up with @lgestc instead.