Last week we covered the essentials of event logging: Ensuring that all your systems are writing logs about the important events or activities occurring on them. This week we will cover the essentials of centrally collecting these Event Logs on a Window Event Collector (WEC) server, which then forwards all logs to Elastic Security. WEF and WEC Modern versions of Windows include the Windows Remote Management (WinRM) services that implement the WS-Management (WSman) protocol, and just to add to t
What does a career journey into the inside sales team look like at Elastic? We talked to two of our own — Tom Wilde and Jan Kumorowicz — about moving from user success manager roles into cloud sales, and what it’s like to be at the start of a customer’s journey.Tom Wilde, inside cloud account executiveAfter about two years as a user success manager, I began to master the art of outbound sales — cold calling potential enterprise customers, working to find new leads via LinkedIn, and having proof-
Log exploration and analysis is a key step in troubleshooting performance issues in IT environments — from understanding application slow downs to investigating misbehaving containers. Did you get an alert that heap usage is spiking on a specific server? A quick search of the logs filtered from that host shows that cache misses started around the same time as the initial spike. Digging into the metadata (date and version) of the highlighted logs from that time period show us that this was likely
Launched in May 2020, the Elastic for students and educators program provides the resources and support necessary to bring our products and solutions into classrooms around the world. Whether it’s through provisioning Elastic Cloud accounts for students to use during their course, extending access to premium features like machine learning to propel research, or working with universities to design partnership programs to help prepare students for their future careers, Elastic is committ
Version 7.12.1 of the Elastic Stack was released today. We recommend you upgrade to this latest version. The 7.12.1 patch contains fixes and small enhancements for the stack. Notable bug fixes are:
Kibana does not recognize a valid geo_shape index when attempting to create a Tracking Containment alert. (#95418 Kibana fails to update or delete sessions in non-default space (#96124\
For a full list of changes for each product, please refer to the release notes: 7.12.1 Release Notes Elastic Stack
Hiya! With Elastic’s expansion of our Elasticsearch Service Cloud offering and automated onboarding, we’ve expanded the Elastic Stack audience from full ops teams to data engineers, security teams, and consultants. As an Elastic support rep, I’ve enjoyed interacting with more user backgrounds and with even wider use cases. With a wider audience, I’m seeing more questions about managing resource allocation, in particular the mystical shard-heap ratio and avoiding circuit breakers. I get it!
Alibaba Cloud is an important partner to us here at Elastic. We officially started our collaboration and strategic partnership with Alibaba Cloud back in 2017, when we announced the Alibaba Cloud Elasticsearch service. Since then, we’ve seen rapid adoption and growth of the service, which now supports more than 10 petabytes of data. This year, we’ve recognized Alibaba Cloud as our Ecosystem Partner of the Year to acknowledge their contributions in advocating for free and open technology and deve
One of the most prevalent log sources in many enterprises is Windows Event Logs. Being able to collect and process these logs has a huge impact on the effectiveness of any cybersecurity team. In this multi-part blog series, we will be looking at all things related to Windows Event Logs. We will begin our journey with audit policies and generating event logs, then move through collecting and analysing logs, and finally to building use cases such as detection rules, reports, and more. The purpose
We’re pleased to announce you can now run Elastic Cloud on Microsoft Azure in the South Central US (Texas) region. Elastic Cloud gives you the power of enterprise search, observability, and security in the South Central US (Texas) region of Azure. Easily search applications, websites, and workplace content platforms for information. Quickly gain deep insights into your environment by monitoring applications and uptime as well as analyzing centralized logs and metrics. You can also help protect y
Elastic believes in giving back by supporting the communities in which we live and work and recognizing that participating in these activities can inspire and enrich our lives in unexpected ways. That’s why we offer our Elasticians volunteer time off (VTO) to foster a culture of caring.The Helper Node blog series shines a light on the inspiring ways our Elasticians use their volunteer hours to help their community and the world at large. In this special Earth Day edition of the Helper Node serie