Permalink
Browse files

Update winlogbeat.yaml

Removed forwarding of non-Sysmon logs.
  • Loading branch information...
jatkinson-sfdc committed Jan 9, 2019
1 parent 2e47705 commit f3f2ec44764e3fc32c56be26288c878c4997cfeb
Showing with 4 additions and 4 deletions.
  1. +4 −4 winlogbeat.yaml
@@ -1,8 +1,8 @@
winlogbeat.event_logs:
- name: Application
ignore_older: 72h
- name: Security
- name: System
#- name: Application
# ignore_older: 72h
#- name: Security
#- name: System
- name: Microsoft-Windows-Sysmon/Operational

output.logstash:

0 comments on commit f3f2ec4

Please sign in to comment.