We want to create a new plugin which will be in charge of:
dashboards and reports related to the endpoint
actions related to endpoints provided by the API
notifications related to the endpoints
dashboard and events view will use the endpoints inventory data directly from the indexer. We expect the information to be similar to the one we currently have in Endpoints summary / agent-name / Inventory.
Coordinate with wazuh-indexer to define an early design and field mappings for the inventory index or indices.
Plan
Analysis
[ ] Design the index and mappings along with the indexer team
[ ] Explore different information dashboard designs:
Segregate information tabs per data type (Network interfaces, Network ports, etc.)
Include a menu within the view to select different views without going for the global menu
Propose other tests / designs based on the available information
PoC
[ ] Mock data in an inventory index that complies with WCS (Wazuh common schema)
[ ] Create a new plugin that includes a dashboard and discover views in the main plugin
[ ] The dashboard must be configured as a saved object so it can be referenced in the reporting plugin
Description
We want to create a new plugin which will be in charge of:
dashboard and events view will use the endpoints inventory data directly from the indexer. We expect the information to be similar to the one we currently have in Endpoints summary / agent-name / Inventory.
Coordinate with wazuh-indexer to define an early design and field mappings for the inventory index or indices.
Plan