diff --git a/packages/azure/changelog.yml b/packages/azure/changelog.yml index b4d5650c7d6..b47b1f91ee2 100644 --- a/packages/azure/changelog.yml +++ b/packages/azure/changelog.yml @@ -1,3 +1,8 @@ +- version: "1.5.22" + changes: + - description: Migration of Azure Cloud Overview dashboard to Lens and style changes + type: enhancement + link: https://github.com/elastic/integrations/pull/6501 - version: "1.5.21" changes: - description: Migration of User Activity Dashboard to Lens diff --git a/packages/azure/kibana/dashboard/azure-41e84340-ec20-11e9-90ec-112a988266d5.json b/packages/azure/kibana/dashboard/azure-41e84340-ec20-11e9-90ec-112a988266d5.json index e94c674f2fb..c67e13d6163 100644 --- a/packages/azure/kibana/dashboard/azure-41e84340-ec20-11e9-90ec-112a988266d5.json +++ b/packages/azure/kibana/dashboard/azure-41e84340-ec20-11e9-90ec-112a988266d5.json @@ -1,1541 +1,1959 @@ { - "id": "azure-41e84340-ec20-11e9-90ec-112a988266d5", - "type": "dashboard", - "namespaces": [ - "default" - ], - "updated_at": "2023-03-07T09:38:25.166Z", - "created_at": "2023-03-07T09:38:25.166Z", - "version": "WzExMjgwLDFd", - "attributes": { - "controlGroupInput": { - "chainingSystem": "HIERARCHICAL", - "controlStyle": "oneLine", - "ignoreParentSettingsJSON": "{\"ignoreFilters\":false,\"ignoreQuery\":false,\"ignoreTimerange\":false,\"ignoreValidations\":false}", - "panelsJSON": "{\"042f777a-5e41-41e8-9d6e-d842473a8aed\":{\"order\":0,\"width\":\"medium\",\"grow\":true,\"type\":\"optionsListControl\",\"explicitInput\":{\"fieldName\":\"azure.subscription_id\",\"title\":\"Subscription\",\"id\":\"042f777a-5e41-41e8-9d6e-d842473a8aed\",\"enhancements\":{}}}}" - }, - "description": "This dashboard provides an overview of user activity, alerts and resource in Azure cloud.", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "data_stream.dataset", - "negate": false, - "params": { - "query": "azure.activitylogs" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "data_stream.dataset": "azure.activitylogs" - } - } - } - ], - "query": { - "language": "kuery", - "query": "" - } - } - }, - "optionsJSON": { - "hidePanelTitles": false, - "useMargins": true - }, - "panelsJSON": [ - { - "version": "8.5.0", - "type": "visualization", - "gridData": { - "h": 4, - "i": "6b6e7452-979c-4f78-afc2-cc58fcf105ff", - "w": 24, - "x": 0, - "y": 0 + "attributes": { + "controlGroupInput": { + "chainingSystem": "HIERARCHICAL", + "controlStyle": "oneLine", + "ignoreParentSettingsJSON": "{\"ignoreFilters\":false,\"ignoreQuery\":false,\"ignoreTimerange\":false,\"ignoreValidations\":false}", + "panelsJSON": "{\"042f777a-5e41-41e8-9d6e-d842473a8aed\":{\"order\":0,\"width\":\"medium\",\"grow\":true,\"type\":\"optionsListControl\",\"explicitInput\":{\"fieldName\":\"azure.subscription_id\",\"title\":\"Subscription\",\"id\":\"042f777a-5e41-41e8-9d6e-d842473a8aed\",\"enhancements\":{}}}}" }, - "panelIndex": "6b6e7452-979c-4f78-afc2-cc58fcf105ff", - "embeddableConfig": { - "enhancements": {}, - "savedVis": { - "title": "Navigation Overview [Logs Azure]", - "description": "", - "uiState": {}, - "params": { - "fontSize": 10, - "markdown": "### Azure Monitoring\n\n[**Overview**](#/dashboard/azure-41e84340-ec20-11e9-90ec-112a988266d5) | [Users](#/dashboard/azure-87095750-f05a-11e9-90ec-112a988266d5) | [Alerts](#/dashboard/azure-0f559cc0-f0d5-11e9-90ec-112a988266d5) ", - "openLinksInNewTab": false - }, - "type": "markdown", - "data": { - "aggs": [], - "searchSource": { + "description": "This dashboard provides an overview of user activity, alerts and resource in Azure cloud.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { "filter": [], "query": { - "language": "kuery", - "query": "" + "language": "kuery", + "query": "" } - } } - } }, - "title": "Navigation Overview" - }, - { - "version": "8.5.0", - "type": "visualization", - "gridData": { - "h": 8, - "i": "1e73bca7-8569-41b5-830e-2f762602219a", - "w": 24, - "x": 24, - "y": 0 + "optionsJSON": { + "hidePanelTitles": false, + "syncColors": false, + "syncCursor": true, + "syncTooltips": false, + "useMargins": true }, - "panelIndex": "1e73bca7-8569-41b5-830e-2f762602219a", - "embeddableConfig": { - "enhancements": {}, - "savedVis": { - "title": "Activity Level [Logs Azure]", - "description": "", - "uiState": {}, - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "filter": { - "language": "kuery", - "query": "data_stream.dataset :\"azure.activitylogs\" and azure.activitylogs.event_category :\"Administrative\" " - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "logs-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "bar", - "color": "#68BC00", - "fill": 0.5, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "line_width": 1, - "metrics": [ - { - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "count" + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {}, + "savedVis": { + "data": { + "aggs": [], + "searchSource": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "description": "", + "params": { + "fontSize": 10, + "markdown": "### Azure Monitoring\n\n[**Overview**](#/dashboard/azure-41e84340-ec20-11e9-90ec-112a988266d5) | [Users](#/dashboard/azure-87095750-f05a-11e9-90ec-112a988266d5) | [Alerts](#/dashboard/azure-0f559cc0-f0d5-11e9-90ec-112a988266d5) ", + "openLinksInNewTab": false + }, + "title": "Navigation Overview [Logs Azure]", + "type": "markdown", + "uiState": {} } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "everything", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 0, - "time_field": "", - "type": "timeseries", - "use_kibana_indexes": false, - "drop_last_bucket": 1 + }, + "gridData": { + "h": 6, + "i": "6b6e7452-979c-4f78-afc2-cc58fcf105ff", + "w": 24, + "x": 0, + "y": 0 + }, + "panelIndex": "6b6e7452-979c-4f78-afc2-cc58fcf105ff", + "title": "Navigation Overview", + "type": "visualization", + "version": "8.6.0" }, - "type": "metrics", - "data": { - "aggs": [], - "searchSource": {} - } - } - }, - "title": "Activity Level" - }, - { - "version": "8.5.0", - "type": "visualization", - "gridData": { - "h": 6, - "i": "d9465e9f-49f1-4173-b1a4-fea9ee3120ab", - "w": 24, - "x": 0, - "y": 4 - }, - "panelIndex": "d9465e9f-49f1-4173-b1a4-fea9ee3120ab", - "embeddableConfig": { - "enhancements": {}, - "savedVis": { - "title": "Activity Stats [Logs Azure]", - "description": "", - "uiState": {}, - "params": { - "addLegend": false, - "addTooltip": true, - "dimensions": { - "metrics": [ - { - "accessor": 0, - "format": { - "id": "number", - "params": {} - }, - "type": "vis_dimension" - }, - { - "accessor": 1, - "format": { - "id": "number", - "params": {} - }, - "type": "vis_dimension" - }, - { - "accessor": 2, - "format": { - "id": "number", - "params": {} + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-b306cb68-041f-4258-bb8e-22b385bf3a0a", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "layers": { + "b306cb68-041f-4258-bb8e-22b385bf3a0a": { + "columnOrder": [ + "97da1da2-8e9b-47e4-9c71-d76a07e32280", + "0bf483d1-eaf5-44a6-90a5-106c59491a23" + ], + "columns": { + "0bf483d1-eaf5-44a6-90a5-106c59491a23": { + "dataType": "number", + "isBucketed": false, + "label": "Count of @timestamp", + "operationType": "count", + "params": { + "emptyAsNull": true + }, + "scale": "ratio", + "sourceField": "@timestamp" + }, + "97da1da2-8e9b-47e4-9c71-d76a07e32280": { + "customLabel": true, + "dataType": "date", + "isBucketed": true, + "label": " ", + "operationType": "date_histogram", + "params": { + "dropPartials": false, + "includeEmptyRows": true, + "interval": "auto" + }, + "scale": "interval", + "sourceField": "@timestamp" + } + }, + "incompleteColumns": {}, + "sampling": 1 + } + } + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "data_stream.dataset :\"azure.activitylogs\" and azure.activitylogs.event_category :\"Administrative\" " + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": false, + "yRight": true + }, + "layers": [ + { + "accessors": [ + "0bf483d1-eaf5-44a6-90a5-106c59491a23" + ], + "layerId": "b306cb68-041f-4258-bb8e-22b385bf3a0a", + "layerType": "data", + "position": "top", + "seriesType": "bar", + "showGridlines": false, + "xAccessor": "97da1da2-8e9b-47e4-9c71-d76a07e32280" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "bar", + "title": "Empty XY chart", + "valueLabels": "hide", + "xTitle": "" + } + }, + "title": "Activity level [Logs Azure]", + "type": "lens", + "visualizationType": "lnsXY" }, - "type": "vis_dimension" - } - ] - }, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000, - "type": "range" - } - ], - "invertColors": false, - "labels": { - "show": true + "enhancements": {}, + "hidePanelTitles": false }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" + "gridData": { + "h": 13, + "i": "87da9826-48f4-4c41-b8f5-00d964ecfbad", + "w": 24, + "x": 24, + "y": 0 }, - "useRanges": false - }, - "type": "metric" + "panelIndex": "87da9826-48f4-4c41-b8f5-00d964ecfbad", + "title": "Activity level", + "type": "lens", + "version": "8.6.0" }, - "type": "metric", - "data": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Resources", - "field": "azure.resource.name" - }, - "schema": "metric", - "type": "cardinality" + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-171e20a6-631d-4bf4-8bf3-eda9e75aaf35", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "layers": { + "171e20a6-631d-4bf4-8bf3-eda9e75aaf35": { + "columnOrder": [ + "b1a390df-f645-4343-977f-419ee4078e3d" + ], + "columns": { + "b1a390df-f645-4343-977f-419ee4078e3d": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Resource count", + "operationType": "unique_count", + "params": { + "emptyAsNull": false, + "format": { + "id": "number", + "params": { + "decimals": 2 + } + } + }, + "scale": "ratio", + "sourceField": "azure.resource.name" + } + }, + "incompleteColumns": {}, + "sampling": 1 + } + } + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "layerId": "171e20a6-631d-4bf4-8bf3-eda9e75aaf35", + "layerType": "data", + "metricAccessor": "b1a390df-f645-4343-977f-419ee4078e3d", + "showBar": false + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsMetric" + }, + "enhancements": {}, + "hidePanelTitles": false }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Users", - "field": "azure.activitylogs.identity.claims_initiated_by_user.name" - }, - "schema": "metric", - "type": "cardinality" + "gridData": { + "h": 10, + "i": "e642e577-c00b-491e-b802-2cdf045843d0", + "w": 6, + "x": 0, + "y": 6 }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Resource Groups", - "field": "azure.resource.group" - }, - "schema": "metric", - "type": "cardinality" + "panelIndex": "e642e577-c00b-491e-b802-2cdf045843d0", + "title": "Resources", + "type": "lens", + "version": "8.6.0" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-171e20a6-631d-4bf4-8bf3-eda9e75aaf35", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "layers": { + "171e20a6-631d-4bf4-8bf3-eda9e75aaf35": { + "columnOrder": [ + "b1a390df-f645-4343-977f-419ee4078e3d" + ], + "columns": { + "b1a390df-f645-4343-977f-419ee4078e3d": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "User count", + "operationType": "unique_count", + "params": { + "emptyAsNull": false, + "format": { + "id": "number", + "params": { + "decimals": 2 + } + } + }, + "scale": "ratio", + "sourceField": "azure.activitylogs.identity.claims_initiated_by_user.name" + } + }, + "incompleteColumns": {}, + "sampling": 1 + } + } + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "layerId": "171e20a6-631d-4bf4-8bf3-eda9e75aaf35", + "layerType": "data", + "metricAccessor": "b1a390df-f645-4343-977f-419ee4078e3d", + "showBar": false + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsMetric" + }, + "enhancements": {}, + "hidePanelTitles": false }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Subscriptions", - "field": "azure.subscription_id" - }, - "schema": "metric", - "type": "cardinality" - } - ], - "searchSource": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "data_stream.dataset : \"azure.activitylogs\" " - } - } - } - } - }, - "title": "Activity Stats" - }, - { - "version": "8.5.0", - "type": "visualization", - "gridData": { - "h": 7, - "i": "18ec1e20-202b-4a40-8d0d-22060ac3e23c", - "w": 24, - "x": 24, - "y": 8 - }, - "panelIndex": "18ec1e20-202b-4a40-8d0d-22060ac3e23c", - "embeddableConfig": { - "enhancements": {}, - "savedVis": { - "title": "Access Requests [Logs Azure]", - "description": "", - "uiState": {}, - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "filter": { - "language": "kuery", - "query": "data_stream.dataset :\"azure.activitylogs\" and azure.activitylogs.operation_name : *LISTKEYS*" - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "logs-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": "0", - "filter": { - "language": "kuery", - "query": "event.outcome : \"success\" or event.outcome : \"Success\" " - }, - "formatter": "number", - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "label": "Success", - "line_width": "2", - "metrics": [ - { - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "count" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "filter", - "stacked": "none" + "gridData": { + "h": 10, + "i": "c0cae6bf-e96d-437d-ba5b-44210f181b4a", + "w": 6, + "x": 6, + "y": 6 }, - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(226,115,0,1)", - "fill": "0", - "filter": { - "language": "kuery", - "query": "event.outcome : \"Failure\" or event.outcome : \"failure\" " - }, - "formatter": "number", - "id": "1b5f75a0-ec15-11e9-b6a7-21d19b63822a", - "label": "Failure", - "line_width": "2", - "metrics": [ - { - "id": "1b5f75a1-ec15-11e9-b6a7-21d19b63822a", - "type": "count" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "filter", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 0, - "time_field": "", - "type": "timeseries", - "use_kibana_indexes": false, - "drop_last_bucket": 1 + "panelIndex": "c0cae6bf-e96d-437d-ba5b-44210f181b4a", + "title": "Users", + "type": "lens", + "version": "8.6.0" }, - "type": "metrics", - "data": { - "aggs": [], - "searchSource": {} - } - } - }, - "title": "Access Requests" - }, - { - "version": "8.5.0", - "type": "visualization", - "gridData": { - "h": 11, - "i": "d2bdec0f-dde1-4925-bf7e-afbc430c0eca", - "w": 24, - "x": 0, - "y": 10 - }, - "panelIndex": "d2bdec0f-dde1-4925-bf7e-afbc430c0eca", - "embeddableConfig": { - "enhancements": {}, - "savedVis": { - "title": "User Tag Cloud [Logs Azure]", - "description": "", - "uiState": {}, - "params": { - "bucket": { - "accessor": 0, - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-171e20a6-631d-4bf4-8bf3-eda9e75aaf35", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "layers": { + "171e20a6-631d-4bf4-8bf3-eda9e75aaf35": { + "columnOrder": [ + "b1a390df-f645-4343-977f-419ee4078e3d" + ], + "columns": { + "b1a390df-f645-4343-977f-419ee4078e3d": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Resource Group count", + "operationType": "unique_count", + "params": { + "emptyAsNull": false, + "format": { + "id": "number", + "params": { + "decimals": 2 + } + } + }, + "scale": "ratio", + "sourceField": "azure.resource.group" + } + }, + "incompleteColumns": {}, + "sampling": 1 + } + } + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "layerId": "171e20a6-631d-4bf4-8bf3-eda9e75aaf35", + "layerType": "data", + "metricAccessor": "b1a390df-f645-4343-977f-419ee4078e3d", + "showBar": false + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsMetric" + }, + "enhancements": {}, + "hidePanelTitles": false }, - "type": "vis_dimension" - }, - "maxFontSize": 32, - "metric": { - "accessor": 1, - "format": { - "id": "string", - "params": {} + "gridData": { + "h": 10, + "i": "68ddf2aa-b765-4632-9298-b80fae0e7b80", + "w": 6, + "x": 12, + "y": 6 }, - "type": "vis_dimension" - }, - "minFontSize": 12, - "orientation": "single", - "scale": "linear", - "showLabel": true, - "palette": { - "type": "palette", - "name": "kibana_palette" - } + "panelIndex": "68ddf2aa-b765-4632-9298-b80fae0e7b80", + "title": "Resource Groups", + "type": "lens", + "version": "8.6.0" }, - "type": "tagcloud", - "data": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-171e20a6-631d-4bf4-8bf3-eda9e75aaf35", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "layers": { + "171e20a6-631d-4bf4-8bf3-eda9e75aaf35": { + "columnOrder": [ + "b1a390df-f645-4343-977f-419ee4078e3d" + ], + "columns": { + "b1a390df-f645-4343-977f-419ee4078e3d": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Subscription count", + "operationType": "unique_count", + "params": { + "emptyAsNull": false, + "format": { + "id": "number", + "params": { + "decimals": 2 + } + } + }, + "scale": "ratio", + "sourceField": "azure.subscription_id" + } + }, + "incompleteColumns": {}, + "sampling": 1 + } + } + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "layerId": "171e20a6-631d-4bf4-8bf3-eda9e75aaf35", + "layerType": "data", + "metricAccessor": "b1a390df-f645-4343-977f-419ee4078e3d", + "showBar": false + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsMetric" + }, + "enhancements": {}, + "hidePanelTitles": false }, - { - "enabled": true, - "id": "2", - "params": { - "field": "azure.activitylogs.identity.claims_initiated_by_user.name", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "segment", - "type": "terms" - } - ], - "searchSource": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - } - } - }, - "title": "Top Active Users" - }, - { - "version": "8.5.0", - "type": "visualization", - "gridData": { - "h": 7, - "i": "3bcc964d-6862-4fdd-9d82-f7510cc02162", - "w": 12, - "x": 24, - "y": 15 - }, - "panelIndex": "3bcc964d-6862-4fdd-9d82-f7510cc02162", - "embeddableConfig": { - "enhancements": {}, - "savedVis": { - "title": "Alerts Overview [Logs Azure]", - "description": "", - "uiState": {}, - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "filter": { - "language": "kuery", - "query": "data_stream.dataset :\"azure.activitylogs\" and azure.activitylogs.event_category : \"Alert\"" - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "logs-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(252,220,0,1)", - "fill": 0.5, - "filter": { - "language": "kuery", - "query": "azure.activitylogs.result_type: \"Activated\"" - }, - "formatter": "number", - "hide_in_legend": 0, - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "line_width": 1, - "metrics": [ - { - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "count" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "filter", - "stacked": "none" + "gridData": { + "h": 10, + "i": "b80ef558-c491-46f9-8a07-31834373f61d", + "w": 6, + "x": 18, + "y": 6 }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "filter": { - "language": "kuery", - "query": "azure.activitylogs.result_type: \"Resolved\" or azure.activitylogs.result_type: \"Succeeded\"" - }, - "formatter": "number", - "hide_in_legend": 0, - "id": "5a52f170-ec1e-11e9-b6a7-21d19b63822a", - "line_width": 1, - "metrics": [ - { - "id": "5a52f171-ec1e-11e9-b6a7-21d19b63822a", - "type": "count" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "filter", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 0, - "time_field": "", - "type": "timeseries", - "use_kibana_indexes": false, - "drop_last_bucket": 1 + "panelIndex": "b80ef558-c491-46f9-8a07-31834373f61d", + "title": "Subscriptions", + "type": "lens", + "version": "8.6.0" }, - "type": "metrics", - "data": { - "aggs": [], - "searchSource": {} - } - } - }, - "title": "Alerts Overview" - }, - { - "version": "8.5.0", - "type": "visualization", - "gridData": { - "h": 7, - "i": "74436614-9dfc-4c38-bc58-8cb76c348f37", - "w": 12, - "x": 36, - "y": 15 - }, - "panelIndex": "74436614-9dfc-4c38-bc58-8cb76c348f37", - "embeddableConfig": { - "enhancements": {}, - "savedVis": { - "title": "Service Health Overview [Logs Azure]", - "description": "", - "uiState": {}, - "params": { - "axis_formatter": "number", - "axis_position": "left", - "axis_scale": "normal", - "filter": { - "language": "kuery", - "query": "data_stream.dataset :\"azure.activitylogs\" and azure.activitylogs.event_category : \"ServiceHealth\"" - }, - "id": "61ca57f0-469d-11e7-af02-69e470af7417", - "index_pattern": "logs-*", - "interval": "", - "isModelInvalid": false, - "series": [ - { - "axis_position": "right", - "chart_type": "line", - "color": "rgba(252,220,0,1)", - "fill": 0.5, - "filter": { - "language": "kuery", - "query": "azure.activitylogs.result_type: \"Active\"" - }, - "formatter": "number", - "hide_in_legend": 0, - "id": "61ca57f1-469d-11e7-af02-69e470af7417", - "line_width": 1, - "metrics": [ - { - "id": "61ca57f2-469d-11e7-af02-69e470af7417", - "type": "count" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "filter", - "stacked": "none" + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-c932ebc5-5df5-4caa-bf09-12e99dc3c421", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "layers": { + "c932ebc5-5df5-4caa-bf09-12e99dc3c421": { + "columnOrder": [ + "1b1cedba-8458-44fe-a981-d11b6b890a4c", + "60543e77-2bfd-4136-80a8-848c242859d2", + "6f73418e-9127-43f2-9567-7de9d3edd0d2" + ], + "columns": { + "1b1cedba-8458-44fe-a981-d11b6b890a4c": { + "customLabel": true, + "dataType": "date", + "isBucketed": true, + "label": " ", + "operationType": "date_histogram", + "params": { + "dropPartials": false, + "includeEmptyRows": true, + "interval": "auto" + }, + "scale": "interval", + "sourceField": "@timestamp" + }, + "60543e77-2bfd-4136-80a8-848c242859d2": { + "customLabel": true, + "dataType": "number", + "filter": { + "language": "kuery", + "query": "event.outcome : \"success\" or event.outcome : \"Success\" " + }, + "isBucketed": false, + "label": "Success", + "operationType": "count", + "params": { + "emptyAsNull": false + }, + "scale": "ratio", + "sourceField": "@timestamp" + }, + "6f73418e-9127-43f2-9567-7de9d3edd0d2": { + "customLabel": true, + "dataType": "number", + "filter": { + "language": "kuery", + "query": "event.outcome : \"Failure\" or event.outcome : \"failure\" " + }, + "isBucketed": false, + "label": "Failure", + "operationType": "count", + "params": { + "emptyAsNull": false + }, + "scale": "ratio", + "sourceField": "___records___" + } + }, + "incompleteColumns": {}, + "sampling": 1 + } + } + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "data_stream.dataset :\"azure.activitylogs\" and azure.activitylogs.operation_name : *LISTKEYS* " + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": false, + "yRight": true + }, + "layers": [ + { + "accessors": [ + "60543e77-2bfd-4136-80a8-848c242859d2", + "6f73418e-9127-43f2-9567-7de9d3edd0d2" + ], + "layerId": "c932ebc5-5df5-4caa-bf09-12e99dc3c421", + "layerType": "data", + "position": "top", + "seriesType": "area", + "showGridlines": false, + "xAccessor": "1b1cedba-8458-44fe-a981-d11b6b890a4c", + "yConfig": [ + { + "color": "#d36086", + "forAccessor": "6f73418e-9127-43f2-9567-7de9d3edd0d2" + } + ] + } + ], + "legend": { + "isVisible": false, + "position": "right", + "showSingleSeries": false + }, + "preferredSeriesType": "area", + "title": "Empty XY chart", + "valueLabels": "hide" + } + }, + "title": "Access Requests [Azure Logs]", + "type": "lens", + "visualizationType": "lnsXY" + }, + "enhancements": {}, + "hidePanelTitles": false }, - { - "axis_position": "right", - "chart_type": "line", - "color": "#68BC00", - "fill": 0.5, - "filter": { - "language": "kuery", - "query": "azure.activitylogs.result_type: \"Resolved\" " - }, - "formatter": "number", - "hide_in_legend": 0, - "id": "5a52f170-ec1e-11e9-b6a7-21d19b63822a", - "line_width": 1, - "metrics": [ - { - "id": "5a52f171-ec1e-11e9-b6a7-21d19b63822a", - "type": "count" - } - ], - "point_size": 1, - "separate_axis": 0, - "split_color_mode": "gradient", - "split_mode": "filter", - "stacked": "none" - } - ], - "show_grid": 1, - "show_legend": 0, - "time_field": "", - "type": "timeseries", - "use_kibana_indexes": false, - "drop_last_bucket": 1 - }, - "type": "metrics", - "data": { - "aggs": [], - "searchSource": {} - } - } - }, - "title": "Service Health" - }, - { - "version": "8.5.0", - "type": "visualization", - "gridData": { - "h": 19, - "i": "a6f36dfe-b6d6-4dca-b63c-81f5b4f7c8f8", - "w": 24, - "x": 0, - "y": 21 - }, - "panelIndex": "a6f36dfe-b6d6-4dca-b63c-81f5b4f7c8f8", - "embeddableConfig": { - "vis": { - "legendOpen": false - }, - "enhancements": {}, - "savedVis": { - "title": "Top Resource Groups [Logs Azure]", - "description": "", - "uiState": {}, - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 200 - }, - "position": "left", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "dimensions": { - "x": { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "params": {} + "gridData": { + "h": 13, + "i": "1243ef52-3a6a-4c1e-a2c6-643a7231ab6a", + "w": 24, + "x": 24, + "y": 13 }, - "y": [ - { - "accessor": 1, - "aggType": "count", - "format": { - "id": "number" - }, - "params": {} - } - ] - }, - "grid": { - "categoryLines": false - }, - "labels": {}, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "mode": "normal", - "show": true, - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1", - "circlesRadius": 1 - } - ], - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": true, - "rotate": 75, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "bottom", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": false, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ], - "palette": { - "type": "palette", - "name": "kibana_palette" - }, - "isVislibVis": true, - "detailedTooltip": true, - "legendSize": "auto" + "panelIndex": "1243ef52-3a6a-4c1e-a2c6-643a7231ab6a", + "title": "Access Requests", + "type": "lens", + "version": "8.6.0" }, - "type": "horizontal_bar", - "data": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-0244f8d2-e938-4d08-8107-efb64df49277", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "94d12b4e-1b4e-47c2-b418-25ca180cdc8d", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "layers": { + "0244f8d2-e938-4d08-8107-efb64df49277": { + "columnOrder": [ + "6bc3f7d9-74bf-45b2-9825-103d2ed8a93c", + "6f49b599-6ef5-48f7-a454-0fca33514a94" + ], + "columns": { + "6bc3f7d9-74bf-45b2-9825-103d2ed8a93c": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Top Active Users", + "operationType": "terms", + "params": { + "exclude": [], + "excludeIsRegex": false, + "include": [], + "includeIsRegex": false, + "missingBucket": false, + "orderBy": { + "columnId": "6f49b599-6ef5-48f7-a454-0fca33514a94", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": false, + "parentFormat": { + "id": "terms" + }, + "secondaryFields": [], + "size": 10 + }, + "scale": "ordinal", + "sourceField": "azure.activitylogs.identity.claims_initiated_by_user.name" + }, + "6f49b599-6ef5-48f7-a454-0fca33514a94": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Count", + "operationType": "count", + "params": { + "emptyAsNull": true + }, + "scale": "ratio", + "sourceField": "___records___" + } + }, + "incompleteColumns": {} + } + } + }, + "textBased": { + "layers": {} + } + }, + "filters": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "index": "94d12b4e-1b4e-47c2-b418-25ca180cdc8d", + "key": "azure.activitylogs.identity.claims_initiated_by_user.name", + "negate": false, + "params": { + "query": "tamara.dancheva@elastic.co" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "azure.activitylogs.identity.claims_initiated_by_user.name": "tamara.dancheva@elastic.co" + } + } + } + ], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "fittingFunction": "None", + "gridlinesVisibilitySettings": { + "x": false, + "yLeft": false, + "yRight": true + }, + "labelsOrientation": { + "x": 0, + "yLeft": 0, + "yRight": 0 + }, + "layers": [ + { + "accessors": [ + "6f49b599-6ef5-48f7-a454-0fca33514a94" + ], + "layerId": "0244f8d2-e938-4d08-8107-efb64df49277", + "layerType": "data", + "seriesType": "bar_horizontal", + "xAccessor": "6bc3f7d9-74bf-45b2-9825-103d2ed8a93c", + "yConfig": [ + { + "axisMode": "left", + "color": "#9170b8", + "forAccessor": "6f49b599-6ef5-48f7-a454-0fca33514a94" + } + ] + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "bar_horizontal", + "tickLabelsVisibilitySettings": { + "x": true, + "yLeft": false, + "yRight": true + }, + "valueLabels": "hide" + } + }, + "title": "Top Resource Groups [Logs Azure]", + "type": "lens", + "visualizationType": "lnsXY" + }, + "enhancements": {}, + "hidePanelTitles": false }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Resource Groups", - "field": "azure.resource.group", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 10 - }, - "schema": "segment", - "type": "terms" - } - ], - "searchSource": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - } - } - } - } - }, - "title": "Top Resource Groups" - }, - { - "version": "8.5.0", - "type": "visualization", - "gridData": { - "h": 6, - "i": "644c6151-fd05-4b2e-b18e-30843697e932", - "w": 12, - "x": 24, - "y": 22 - }, - "panelIndex": "644c6151-fd05-4b2e-b18e-30843697e932", - "embeddableConfig": { - "enhancements": {}, - "savedVis": { - "title": "Alerts Count [Logs Azure]", - "description": "", - "uiState": {}, - "params": { - "addLegend": false, - "addTooltip": true, - "dimensions": { - "bucket": { - "accessor": 0, - "format": { - "id": "string", - "params": {} - }, - "type": "vis_dimension" + "gridData": { + "h": 13, + "i": "d7fbadb0-618f-4467-b6b9-962b18b968cf", + "w": 24, + "x": 0, + "y": 16 }, - "metrics": [ - { - "accessor": 1, - "format": { - "id": "number", - "params": {} + "panelIndex": "d7fbadb0-618f-4467-b6b9-962b18b968cf", + "title": "Top Active Users", + "type": "lens", + "version": "8.6.0" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-fbf47563-00f1-4b20-bf5b-f3de5f04d69c", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "layers": { + "fbf47563-00f1-4b20-bf5b-f3de5f04d69c": { + "columnOrder": [ + "62a8ecf5-5ad6-46fa-932f-0f6b286d77d7", + "16cd43a8-a2ee-4146-a6f7-e288f62308d3", + "92028023-ca37-43fc-a4af-b3411f598262" + ], + "columns": { + "16cd43a8-a2ee-4146-a6f7-e288f62308d3": { + "customLabel": true, + "dataType": "number", + "filter": { + "language": "kuery", + "query": "azure.activitylogs.result_type: \"Activated\"" + }, + "isBucketed": false, + "label": "Activated", + "operationType": "count", + "params": { + "emptyAsNull": false + }, + "scale": "ratio", + "sourceField": "___records___" + }, + "62a8ecf5-5ad6-46fa-932f-0f6b286d77d7": { + "customLabel": true, + "dataType": "date", + "isBucketed": true, + "label": " ", + "operationType": "date_histogram", + "params": { + "dropPartials": false, + "includeEmptyRows": true, + "interval": "auto" + }, + "scale": "interval", + "sourceField": "@timestamp" + }, + "92028023-ca37-43fc-a4af-b3411f598262": { + "customLabel": true, + "dataType": "number", + "filter": { + "language": "kuery", + "query": "azure.activitylogs.result_type: \"Resolved\" or azure.activitylogs.result_type: \"Succeeded\"" + }, + "isBucketed": false, + "label": "Resolved/Succeeded", + "operationType": "count", + "params": { + "emptyAsNull": false + }, + "scale": "ratio", + "sourceField": "___records___" + } + }, + "incompleteColumns": {}, + "sampling": 1 + } + } + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "data_stream.dataset :\"azure.activitylogs\" and (azure.activitylogs.event_category : \"Alert\" or azure.activitylogs.category : \"Alert\")" + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": false, + "yRight": true + }, + "layers": [ + { + "accessors": [ + "16cd43a8-a2ee-4146-a6f7-e288f62308d3", + "92028023-ca37-43fc-a4af-b3411f598262" + ], + "layerId": "fbf47563-00f1-4b20-bf5b-f3de5f04d69c", + "layerType": "data", + "position": "top", + "seriesType": "area", + "showGridlines": false, + "xAccessor": "62a8ecf5-5ad6-46fa-932f-0f6b286d77d7", + "yConfig": [ + { + "color": "#d6bf57", + "forAccessor": "16cd43a8-a2ee-4146-a6f7-e288f62308d3" + }, + { + "color": "#54b399", + "forAccessor": "92028023-ca37-43fc-a4af-b3411f598262" + } + ] + } + ], + "legend": { + "isVisible": false, + "position": "right", + "showSingleSeries": false + }, + "preferredSeriesType": "area", + "title": "Empty XY chart", + "valueLabels": "hide" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsXY" }, - "type": "vis_dimension" - } - ] - }, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000, - "type": "range" - } - ], - "invertColors": false, - "labels": { - "show": true + "enhancements": {}, + "hidePanelTitles": false }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" + "gridData": { + "h": 10, + "i": "f772277f-7e86-47f8-ae04-cdb002409342", + "w": 12, + "x": 24, + "y": 26 }, - "useRanges": false - }, - "type": "metric" + "panelIndex": "f772277f-7e86-47f8-ae04-cdb002409342", + "title": "Alerts overview", + "type": "lens", + "version": "8.6.0" }, - "type": "metric", - "data": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Alerts" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "filters": [ - { - "input": { - "language": "kuery", - "query": "azure.activitylogs.result_type : \"Activated\"" - }, - "label": "Activated" - }, - { - "input": { - "language": "kuery", - "query": "azure.activitylogs.result_type : \"Resolved\"" + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-001126ac-c245-4a17-b17d-311d93ce00d0", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "layers": { + "001126ac-c245-4a17-b17d-311d93ce00d0": { + "columnOrder": [ + "324348a3-185a-490c-9279-90c4c027a9f6", + "5d4fc6e5-3923-44ea-b8f0-de2fbd2f0485", + "cef1ad47-09a1-4a6c-acae-9a91db405e20" + ], + "columns": { + "324348a3-185a-490c-9279-90c4c027a9f6": { + "customLabel": true, + "dataType": "date", + "isBucketed": true, + "label": " ", + "operationType": "date_histogram", + "params": { + "dropPartials": false, + "includeEmptyRows": true, + "interval": "auto" + }, + "scale": "interval", + "sourceField": "@timestamp" + }, + "5d4fc6e5-3923-44ea-b8f0-de2fbd2f0485": { + "customLabel": true, + "dataType": "number", + "filter": { + "language": "kuery", + "query": "azure.activitylogs.result_type: \"Active\"" + }, + "isBucketed": false, + "label": "Active", + "operationType": "count", + "params": { + "emptyAsNull": false + }, + "scale": "ratio", + "sourceField": "@timestamp" + }, + "cef1ad47-09a1-4a6c-acae-9a91db405e20": { + "customLabel": true, + "dataType": "number", + "filter": { + "language": "kuery", + "query": "azure.activitylogs.result_type: \"Resolved\" " + }, + "isBucketed": false, + "label": "Resolved", + "operationType": "count", + "params": { + "emptyAsNull": false + }, + "scale": "ratio", + "sourceField": "@timestamp" + } + }, + "incompleteColumns": {}, + "sampling": 1 + } + } + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "data_stream.dataset :\"azure.activitylogs\" and (azure.activitylogs.event_category : \"ServiceHealth\" or azure.activitylogs.category : \"ServiceHealth\")" + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": false, + "yRight": true + }, + "layers": [ + { + "accessors": [ + "5d4fc6e5-3923-44ea-b8f0-de2fbd2f0485", + "cef1ad47-09a1-4a6c-acae-9a91db405e20" + ], + "layerId": "001126ac-c245-4a17-b17d-311d93ce00d0", + "layerType": "data", + "position": "top", + "seriesType": "area", + "showGridlines": false, + "xAccessor": "324348a3-185a-490c-9279-90c4c027a9f6", + "yConfig": [ + { + "color": "#d6bf57", + "forAccessor": "5d4fc6e5-3923-44ea-b8f0-de2fbd2f0485" + }, + { + "color": "#54b399", + "forAccessor": "cef1ad47-09a1-4a6c-acae-9a91db405e20" + } + ] + } + ], + "legend": { + "isVisible": false, + "position": "right", + "showSingleSeries": false + }, + "preferredSeriesType": "area", + "title": "Empty XY chart", + "valueLabels": "hide" + } }, - "label": "Resolved" - }, - { - "input": { - "language": "kuery", - "query": "azure.activitylogs.result_type : \"Succeeded\"" - }, - "label": "Succeeded" - } - ] - }, - "schema": "group", - "type": "filters" - } - ], - "searchSource": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "data_stream.dataset :\"azure.activitylogs\" and azure.activitylogs.event_category : \"Alert\" " - } - } - } - } - }, - "title": "Alerts Count" - }, - { - "version": "8.5.0", - "type": "visualization", - "gridData": { - "h": 6, - "i": "3d5ccff8-6576-4a1c-b3ee-363ae665906e", - "w": 12, - "x": 36, - "y": 22 - }, - "panelIndex": "3d5ccff8-6576-4a1c-b3ee-363ae665906e", - "embeddableConfig": { - "enhancements": {}, - "savedVis": { - "title": "Service Health Count [Logs Azure]", - "description": "", - "uiState": {}, - "params": { - "addLegend": false, - "addTooltip": true, - "dimensions": { - "bucket": { - "accessor": 0, - "format": { - "id": "string", - "params": {} - }, - "type": "vis_dimension" - }, - "metrics": [ - { - "accessor": 1, - "format": { - "id": "number", - "params": {} + "title": "", + "type": "lens", + "visualizationType": "lnsXY" }, - "type": "vis_dimension" - } - ] - }, - "metric": { - "colorSchema": "Green to Red", - "colorsRange": [ - { - "from": 0, - "to": 10000, - "type": "range" - } - ], - "invertColors": false, - "labels": { - "show": true + "enhancements": {}, + "hidePanelTitles": false }, - "metricColorMode": "None", - "percentageMode": false, - "style": { - "bgColor": false, - "bgFill": "#000", - "fontSize": 60, - "labelColor": false, - "subText": "" + "gridData": { + "h": 10, + "i": "ec47f27d-acc4-410b-8951-3ec1f9661d3f", + "w": 12, + "x": 36, + "y": 26 }, - "useRanges": false - }, - "type": "metric" + "panelIndex": "ec47f27d-acc4-410b-8951-3ec1f9661d3f", + "title": "Service Health", + "type": "lens", + "version": "8.6.0" }, - "type": "metric", - "data": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": { - "customLabel": "Incidents" - }, - "schema": "metric", - "type": "count" - }, - { - "enabled": true, - "id": "2", - "params": { - "filters": [ - { - "input": { - "language": "kuery", - "query": "azure.activitylogs.result_type : \"Active\"" + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-0244f8d2-e938-4d08-8107-efb64df49277", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "layers": { + "0244f8d2-e938-4d08-8107-efb64df49277": { + "columnOrder": [ + "6bc3f7d9-74bf-45b2-9825-103d2ed8a93c", + "6f49b599-6ef5-48f7-a454-0fca33514a94" + ], + "columns": { + "6bc3f7d9-74bf-45b2-9825-103d2ed8a93c": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Resource Groups", + "operationType": "terms", + "params": { + "exclude": [], + "excludeIsRegex": false, + "include": [], + "includeIsRegex": false, + "missingBucket": false, + "orderBy": { + "columnId": "6f49b599-6ef5-48f7-a454-0fca33514a94", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": false, + "parentFormat": { + "id": "terms" + }, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "azure.resource.group" + }, + "6f49b599-6ef5-48f7-a454-0fca33514a94": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Count", + "operationType": "count", + "params": { + "emptyAsNull": true + }, + "scale": "ratio", + "sourceField": "___records___" + } + }, + "incompleteColumns": {} + } + } + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "fittingFunction": "None", + "gridlinesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "labelsOrientation": { + "x": 0, + "yLeft": 0, + "yRight": 0 + }, + "layers": [ + { + "accessors": [ + "6f49b599-6ef5-48f7-a454-0fca33514a94" + ], + "layerId": "0244f8d2-e938-4d08-8107-efb64df49277", + "layerType": "data", + "seriesType": "bar_horizontal", + "xAccessor": "6bc3f7d9-74bf-45b2-9825-103d2ed8a93c" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "bar_horizontal", + "tickLabelsVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "valueLabels": "hide" + } }, - "label": "Active" - }, - { - "input": { - "language": "kuery", - "query": "azure.activitylogs.result_type : \"Resolved\"" - }, - "label": "Resolved" - } - ] - }, - "schema": "group", - "type": "filters" - } - ], - "searchSource": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "data_stream.dataset :\"azure.activitylogs\" and azure.activitylogs.event_category : \"ServiceHealth\" " - } - } - } - } - }, - "title": "Service Health Count" - }, - { - "version": "8.5.0", - "type": "visualization", - "gridData": { - "h": 12, - "i": "1a6dce1d-d039-4d18-87c7-1b700da676c2", - "w": 12, - "x": 24, - "y": 28 - }, - "panelIndex": "1a6dce1d-d039-4d18-87c7-1b700da676c2", - "embeddableConfig": { - "legendOpen": false, - "vis": { - "legendOpen": true - }, - "enhancements": {}, - "savedVis": { - "title": "Resource Creations [Logs Azure]", - "description": "", - "uiState": {}, - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 200 - }, - "position": "left", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "dimensions": { - "series": [ - { - "accessor": 1, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } + "title": "Top Resource Groups [Logs Azure]", + "type": "lens", + "visualizationType": "lnsXY" }, - "label": "Creations", - "params": {} - } - ], - "x": { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "label": "Resource type", - "params": {} + "enhancements": {}, + "hidePanelTitles": false }, - "y": [ - { - "accessor": 2, - "aggType": "count", - "format": { - "id": "number" - }, - "label": "Count", - "params": {} - } - ] - }, - "grid": { - "categoryLines": false, - "valueAxis": "" - }, - "labels": {}, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "lineWidth": 2, - "mode": "stacked", - "show": true, - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1", - "circlesRadius": 1 - } - ], - "thresholdLine": { - "color": "#E7664C", - "show": false, - "style": "full", - "value": 10, - "width": 1 - }, - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": true, - "rotate": 75, - "show": true, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "bottom", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": false, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ], - "palette": { - "type": "palette", - "name": "kibana_palette" - }, - "isVislibVis": true, - "detailedTooltip": true, - "legendSize": "auto" + "gridData": { + "h": 16, + "i": "a6f36dfe-b6d6-4dca-b63c-81f5b4f7c8f8", + "w": 24, + "x": 0, + "y": 29 + }, + "panelIndex": "a6f36dfe-b6d6-4dca-b63c-81f5b4f7c8f8", + "title": "Top Resource Groups", + "type": "lens", + "version": "8.6.0" }, - "type": "horizontal_bar", - "data": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-1506c917-88d1-4b2f-a3c3-577e3e9317e6", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "layers": { + "1506c917-88d1-4b2f-a3c3-577e3e9317e6": { + "columnOrder": [ + "4e4ae388-1045-43a4-bf12-0ee52548158b", + "5b56e3f5-158c-4e0f-a8ec-50cd7450063e" + ], + "columns": { + "4e4ae388-1045-43a4-bf12-0ee52548158b": { + "dataType": "string", + "isBucketed": true, + "label": "Filters", + "operationType": "filters", + "params": { + "filters": [ + { + "input": { + "language": "kuery", + "query": "azure.activitylogs.result_type : \"Activated\"" + }, + "label": "Activated" + }, + { + "input": { + "language": "kuery", + "query": "azure.activitylogs.result_type : \"Resolved\"" + }, + "label": "Resolved" + }, + { + "input": { + "language": "kuery", + "query": "azure.activitylogs.result_type : \"Succeeded\"" + }, + "label": "Succeeded" + } + ] + }, + "scale": "ordinal" + }, + "5b56e3f5-158c-4e0f-a8ec-50cd7450063e": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Alerts", + "operationType": "count", + "params": { + "emptyAsNull": false + }, + "scale": "ratio", + "sourceField": "___records___" + } + }, + "incompleteColumns": {} + } + } + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "data_stream.dataset :\"azure.activitylogs\" and (azure.activitylogs.event_category : \"Alert\" or azure.activitylogs.category : \"Alert\")" + }, + "visualization": { + "breakdownByAccessor": "4e4ae388-1045-43a4-bf12-0ee52548158b", + "layerId": "1506c917-88d1-4b2f-a3c3-577e3e9317e6", + "layerType": "data", + "metricAccessor": "5b56e3f5-158c-4e0f-a8ec-50cd7450063e", + "palette": { + "name": "status", + "params": { + "colorStops": [], + "continuity": "all", + "maxSteps": 5, + "name": "status", + "progression": "fixed", + "rangeMax": 100, + "rangeMin": 0, + "rangeType": "percent", + "reverse": false, + "steps": 3, + "stops": [ + { + "color": "#209280", + "stop": 33.33 + }, + { + "color": "#d6bf57", + "stop": 66.66 + }, + { + "color": "#cc5642", + "stop": 100 + } + ] + }, + "type": "palette" + } + } + }, + "title": "Alerts Count [Logs Azure]", + "type": "lens", + "visualizationType": "lnsMetric" + }, + "enhancements": {}, + "hidePanelTitles": false }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Resource type", - "field": "azure.resource.provider", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 15 - }, - "schema": "segment", - "type": "terms" + "gridData": { + "h": 9, + "i": "644c6151-fd05-4b2e-b18e-30843697e932", + "w": 12, + "x": 24, + "y": 36 }, - { - "enabled": true, - "id": "4", - "params": { - "customLabel": "Creations", - "field": "azure.activitylogs.identity.authorization.action", - "include": ".*write", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 15 - }, - "schema": "group", - "type": "terms" - } - ], - "searchSource": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "data_stream.dataset :\"azure.activitylogs\" " - } - } - } - } - }, - "title": "Resource Creations" - }, - { - "version": "8.5.0", - "type": "visualization", - "gridData": { - "h": 12, - "i": "8fddd3bb-c1e6-4533-b075-1ab7361b3af0", - "w": 12, - "x": 36, - "y": 28 - }, - "panelIndex": "8fddd3bb-c1e6-4533-b075-1ab7361b3af0", - "embeddableConfig": { - "legendOpen": false, - "vis": { - "legendOpen": true - }, - "enhancements": {}, - "savedVis": { - "title": "Resource Deletions [Logs Azure]", - "description": "", - "uiState": {}, - "params": { - "addLegend": true, - "addTimeMarker": false, - "addTooltip": true, - "categoryAxes": [ - { - "id": "CategoryAxis-1", - "labels": { - "filter": false, - "rotate": 0, - "show": true, - "truncate": 200 - }, - "position": "left", - "scale": { - "type": "linear" - }, - "show": true, - "style": {}, - "title": {}, - "type": "category" - } - ], - "dimensions": { - "series": [ - { - "accessor": 1, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } + "panelIndex": "644c6151-fd05-4b2e-b18e-30843697e932", + "title": "Alerts Count", + "type": "lens", + "version": "8.6.0" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-a2aaa4e5-7e3c-4db8-a802-8291314c7c8a", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "layers": { + "a2aaa4e5-7e3c-4db8-a802-8291314c7c8a": { + "columnOrder": [ + "d07e798b-dad6-471f-b026-08dd53ea4534", + "40e7c5c0-14c8-496e-be90-a171a8363ba7" + ], + "columns": { + "40e7c5c0-14c8-496e-be90-a171a8363ba7": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Incidents", + "operationType": "count", + "params": { + "emptyAsNull": false + }, + "scale": "ratio", + "sourceField": "___records___" + }, + "d07e798b-dad6-471f-b026-08dd53ea4534": { + "dataType": "string", + "isBucketed": true, + "label": "Filters", + "operationType": "filters", + "params": { + "filters": [ + { + "input": { + "language": "kuery", + "query": "azure.activitylogs.result_type : \"Active\"" + }, + "label": "Active" + }, + { + "input": { + "language": "kuery", + "query": "azure.activitylogs.result_type : \"Resolved\"" + }, + "label": "Resolved" + } + ] + }, + "scale": "ordinal" + } + }, + "incompleteColumns": {} + } + } + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "data_stream.dataset :\"azure.activitylogs\" and (azure.activitylogs.event_category : \"ServiceHealth\" or azure.activitylogs.category : \"ServiceHealth\" )" + }, + "visualization": { + "breakdownByAccessor": "d07e798b-dad6-471f-b026-08dd53ea4534", + "layerId": "a2aaa4e5-7e3c-4db8-a802-8291314c7c8a", + "layerType": "data", + "metricAccessor": "40e7c5c0-14c8-496e-be90-a171a8363ba7", + "palette": { + "name": "status", + "params": { + "colorStops": [], + "continuity": "all", + "maxSteps": 5, + "name": "status", + "progression": "fixed", + "rangeMax": 100, + "rangeMin": 0, + "rangeType": "percent", + "reverse": false, + "steps": 3, + "stops": [ + { + "color": "#209280", + "stop": 33.33 + }, + { + "color": "#d6bf57", + "stop": 66.66 + }, + { + "color": "#cc5642", + "stop": 100 + } + ] + }, + "type": "palette" + } + } + }, + "title": "Service Health Count [Logs Azure]", + "type": "lens", + "visualizationType": "lnsMetric" }, - "label": "Deletions", - "params": {} - } - ], - "x": { - "accessor": 0, - "aggType": "terms", - "format": { - "id": "terms", - "params": { - "id": "string", - "missingBucketLabel": "Missing", - "otherBucketLabel": "Other" - } - }, - "label": "azure.resource.provider: Descending", - "params": {} + "enhancements": {}, + "hidePanelTitles": false + }, + "gridData": { + "h": 9, + "i": "3d5ccff8-6576-4a1c-b3ee-363ae665906e", + "w": 12, + "x": 36, + "y": 36 }, - "y": [ - { - "accessor": 2, - "aggType": "count", - "format": { - "id": "number" + "panelIndex": "3d5ccff8-6576-4a1c-b3ee-363ae665906e", + "title": "Service Health Count", + "type": "lens", + "version": "8.6.0" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-712d88c9-5550-417c-b829-f23937c5adc9", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "layers": { + "712d88c9-5550-417c-b829-f23937c5adc9": { + "columnOrder": [ + "26a79f0a-dcc5-4c8f-828f-cf0d556403df", + "d7c950ee-1c2c-4d8b-8ffa-618ffe97a142", + "8f6e6f42-0284-4df3-9e51-cf7be59ed4c6" + ], + "columns": { + "26a79f0a-dcc5-4c8f-828f-cf0d556403df": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Resource type", + "operationType": "terms", + "params": { + "exclude": [], + "excludeIsRegex": false, + "include": [], + "includeIsRegex": false, + "missingBucket": false, + "orderBy": { + "columnId": "8f6e6f42-0284-4df3-9e51-cf7be59ed4c6", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": false, + "parentFormat": { + "id": "terms" + }, + "size": 15 + }, + "scale": "ordinal", + "sourceField": "azure.resource.provider" + }, + "8f6e6f42-0284-4df3-9e51-cf7be59ed4c6": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Count", + "operationType": "count", + "params": { + "emptyAsNull": true + }, + "scale": "ratio", + "sourceField": "___records___" + }, + "d7c950ee-1c2c-4d8b-8ffa-618ffe97a142": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Deletions", + "operationType": "terms", + "params": { + "exclude": [], + "excludeIsRegex": false, + "include": [ + ".*delete" + ], + "includeIsRegex": true, + "missingBucket": false, + "orderBy": { + "columnId": "8f6e6f42-0284-4df3-9e51-cf7be59ed4c6", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": false, + "parentFormat": { + "id": "terms" + }, + "size": 15 + }, + "scale": "ordinal", + "sourceField": "azure.activitylogs.identity.authorization.action" + } + }, + "incompleteColumns": {} + } + } + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "data_stream.dataset :\"azure.activitylogs\" " + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "curveType": "LINEAR", + "gridlinesVisibilitySettings": { + "x": false, + "yLeft": false, + "yRight": true + }, + "labelsOrientation": { + "x": 0, + "yLeft": -45, + "yRight": -90 + }, + "layers": [ + { + "accessors": [ + "8f6e6f42-0284-4df3-9e51-cf7be59ed4c6" + ], + "isHistogram": false, + "layerId": "712d88c9-5550-417c-b829-f23937c5adc9", + "layerType": "data", + "palette": { + "name": "default", + "type": "palette" + }, + "seriesType": "bar_horizontal", + "simpleView": false, + "splitAccessor": "d7c950ee-1c2c-4d8b-8ffa-618ffe97a142", + "xAccessor": "26a79f0a-dcc5-4c8f-828f-cf0d556403df", + "xScaleType": "ordinal", + "yConfig": [ + { + "axisMode": "left", + "forAccessor": "8f6e6f42-0284-4df3-9e51-cf7be59ed4c6" + } + ] + } + ], + "legend": { + "isVisible": true, + "legendSize": "auto", + "maxLines": 1, + "position": "right", + "shouldTruncate": true, + "showSingleSeries": true + }, + "preferredSeriesType": "bar_stacked", + "tickLabelsVisibilitySettings": { + "x": true, + "yLeft": false, + "yRight": true + }, + "valueLabels": "hide", + "valuesInLegend": false, + "yLeftExtent": { + "enforce": true, + "mode": "full" + }, + "yLeftScale": "linear", + "yRightScale": "linear", + "yTitle": "Count" + } + }, + "title": "Resource Deletions [Logs Azure]", + "type": "lens", + "visualizationType": "lnsXY" }, - "label": "Count", - "params": {} - } - ] - }, - "grid": { - "categoryLines": false - }, - "labels": {}, - "legendPosition": "right", - "seriesParams": [ - { - "data": { - "id": "1", - "label": "Count" - }, - "drawLinesBetweenPoints": true, - "lineWidth": 2, - "mode": "normal", - "show": true, - "showCircles": true, - "type": "histogram", - "valueAxis": "ValueAxis-1", - "circlesRadius": 1 - } - ], - "thresholdLine": { - "color": "#E7664C", - "show": false, - "style": "full", - "value": 10, - "width": 1 - }, - "times": [], - "type": "histogram", - "valueAxes": [ - { - "id": "ValueAxis-1", - "labels": { - "filter": true, - "rotate": 75, - "show": false, - "truncate": 100 - }, - "name": "LeftAxis-1", - "position": "bottom", - "scale": { - "mode": "normal", - "type": "linear" - }, - "show": true, - "style": {}, - "title": { - "text": "Count" - }, - "type": "value" - } - ], - "palette": { - "type": "palette", - "name": "kibana_palette" - }, - "isVislibVis": true, - "detailedTooltip": true, - "legendSize": "auto" + "enhancements": {}, + "hidePanelTitles": false + }, + "gridData": { + "h": 11, + "i": "8fddd3bb-c1e6-4533-b075-1ab7361b3af0", + "w": 24, + "x": 24, + "y": 45 + }, + "panelIndex": "8fddd3bb-c1e6-4533-b075-1ab7361b3af0", + "title": "Resource Deletions", + "type": "lens", + "version": "8.6.0" }, - "type": "horizontal_bar", - "data": { - "aggs": [ - { - "enabled": true, - "id": "1", - "params": {}, - "schema": "metric", - "type": "count" + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-9c190389-3726-4c5e-a1e4-5daf7bcab81c", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "layers": { + "9c190389-3726-4c5e-a1e4-5daf7bcab81c": { + "columnOrder": [ + "a72fd8eb-408a-4c9e-9cd8-6c649e279794", + "53e02540-0f4c-41ca-8645-67d72d92aa7b", + "bc27c885-3b95-4efa-a084-7df6b1e462df" + ], + "columns": { + "53e02540-0f4c-41ca-8645-67d72d92aa7b": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Creations", + "operationType": "terms", + "params": { + "exclude": [], + "excludeIsRegex": false, + "include": [ + ".*write" + ], + "includeIsRegex": true, + "missingBucket": false, + "orderBy": { + "columnId": "bc27c885-3b95-4efa-a084-7df6b1e462df", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": false, + "parentFormat": { + "id": "terms" + }, + "size": 15 + }, + "scale": "ordinal", + "sourceField": "azure.activitylogs.identity.authorization.action" + }, + "a72fd8eb-408a-4c9e-9cd8-6c649e279794": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Resource type", + "operationType": "terms", + "params": { + "exclude": [], + "excludeIsRegex": false, + "include": [], + "includeIsRegex": false, + "missingBucket": false, + "orderBy": { + "columnId": "bc27c885-3b95-4efa-a084-7df6b1e462df", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": false, + "parentFormat": { + "id": "terms" + }, + "size": 15 + }, + "scale": "ordinal", + "sourceField": "azure.resource.provider" + }, + "bc27c885-3b95-4efa-a084-7df6b1e462df": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Count", + "operationType": "count", + "params": { + "emptyAsNull": true + }, + "scale": "ratio", + "sourceField": "___records___" + } + }, + "incompleteColumns": {} + } + } + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "data_stream.dataset :\"azure.activitylogs\" " + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": false, + "yRight": true + }, + "curveType": "LINEAR", + "gridlinesVisibilitySettings": { + "x": false, + "yLeft": false, + "yRight": false + }, + "labelsOrientation": { + "x": 0, + "yLeft": -45, + "yRight": -90 + }, + "layers": [ + { + "accessors": [ + "bc27c885-3b95-4efa-a084-7df6b1e462df" + ], + "isHistogram": false, + "layerId": "9c190389-3726-4c5e-a1e4-5daf7bcab81c", + "layerType": "data", + "palette": { + "name": "default", + "type": "palette" + }, + "seriesType": "bar_horizontal_stacked", + "simpleView": false, + "splitAccessor": "53e02540-0f4c-41ca-8645-67d72d92aa7b", + "xAccessor": "a72fd8eb-408a-4c9e-9cd8-6c649e279794", + "xScaleType": "ordinal", + "yConfig": [ + { + "axisMode": "left", + "forAccessor": "bc27c885-3b95-4efa-a084-7df6b1e462df" + } + ] + } + ], + "legend": { + "isVisible": true, + "legendSize": "auto", + "maxLines": 1, + "position": "right", + "shouldTruncate": true, + "showSingleSeries": true + }, + "preferredSeriesType": "bar_stacked", + "tickLabelsVisibilitySettings": { + "x": true, + "yLeft": false, + "yRight": true + }, + "valueLabels": "hide", + "valuesInLegend": false, + "yLeftExtent": { + "enforce": true, + "mode": "full" + }, + "yLeftScale": "linear", + "yRightScale": "linear", + "yTitle": "Count" + } + }, + "title": "Resource Creations [Logs Azure]", + "type": "lens", + "visualizationType": "lnsXY" + }, + "enhancements": {}, + "hidePanelTitles": false }, - { - "enabled": true, - "id": "2", - "params": { - "customLabel": "Resource type", - "field": "azure.resource.provider", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 15 - }, - "schema": "segment", - "type": "terms" + "gridData": { + "h": 11, + "i": "1a6dce1d-d039-4d18-87c7-1b700da676c2", + "w": 24, + "x": 0, + "y": 45 }, - { - "enabled": true, - "id": "3", - "params": { - "customLabel": "Deletions", - "field": "azure.activitylogs.identity.authorization.action", - "include": ".*delete", - "missingBucket": false, - "missingBucketLabel": "Missing", - "order": "desc", - "orderBy": "1", - "otherBucket": false, - "otherBucketLabel": "Other", - "size": 15 - }, - "schema": "group", - "type": "terms" - } - ], - "searchSource": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "data_stream.dataset :\"azure.activitylogs\" " - } - } + "panelIndex": "1a6dce1d-d039-4d18-87c7-1b700da676c2", + "title": "Resource Creations", + "type": "lens", + "version": "8.6.0" } - } - }, - "title": "Resource Deletions" - } - ], - "timeRestore": false, - "title": "[Logs Azure] Cloud Overview", - "version": 1 - }, - "references": [ - { - "id": "logs-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - }, - { - "type": "index-pattern", - "name": "d9465e9f-49f1-4173-b1a4-fea9ee3120ab:kibanaSavedObjectMeta.searchSourceJSON.index", - "id": "logs-*" - }, - { - "type": "index-pattern", - "name": "d2bdec0f-dde1-4925-bf7e-afbc430c0eca:kibanaSavedObjectMeta.searchSourceJSON.index", - "id": "logs-*" - }, - { - "type": "index-pattern", - "name": "a6f36dfe-b6d6-4dca-b63c-81f5b4f7c8f8:kibanaSavedObjectMeta.searchSourceJSON.index", - "id": "logs-*" - }, - { - "type": "index-pattern", - "name": "644c6151-fd05-4b2e-b18e-30843697e932:kibanaSavedObjectMeta.searchSourceJSON.index", - "id": "logs-*" - }, - { - "type": "index-pattern", - "name": "3d5ccff8-6576-4a1c-b3ee-363ae665906e:kibanaSavedObjectMeta.searchSourceJSON.index", - "id": "logs-*" - }, - { - "type": "index-pattern", - "name": "1a6dce1d-d039-4d18-87c7-1b700da676c2:kibanaSavedObjectMeta.searchSourceJSON.index", - "id": "logs-*" + ], + "timeRestore": false, + "title": "[Logs Azure] Cloud Overview", + "version": 1 }, - { - "type": "index-pattern", - "name": "8fddd3bb-c1e6-4533-b075-1ab7361b3af0:kibanaSavedObjectMeta.searchSourceJSON.index", - "id": "logs-*" + "coreMigrationVersion": "8.6.0", + "created_at": "2023-06-13T08:41:06.687Z", + "id": "azure-41e84340-ec20-11e9-90ec-112a988266d5", + "migrationVersion": { + "dashboard": "8.6.0" }, - { - "name": "controlGroup_042f777a-5e41-41e8-9d6e-d842473a8aed:optionsListDataView", - "type": "index-pattern", - "id": "logs-*" - } - ], - "migrationVersion": { - "dashboard": "8.6.0" - }, - "coreMigrationVersion": "8.6.1" + "references": [ + { + "id": "logs-*", + "name": "87da9826-48f4-4c41-b8f5-00d964ecfbad:indexpattern-datasource-layer-b306cb68-041f-4258-bb8e-22b385bf3a0a", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "e642e577-c00b-491e-b802-2cdf045843d0:indexpattern-datasource-layer-171e20a6-631d-4bf4-8bf3-eda9e75aaf35", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "c0cae6bf-e96d-437d-ba5b-44210f181b4a:indexpattern-datasource-layer-171e20a6-631d-4bf4-8bf3-eda9e75aaf35", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "68ddf2aa-b765-4632-9298-b80fae0e7b80:indexpattern-datasource-layer-171e20a6-631d-4bf4-8bf3-eda9e75aaf35", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "b80ef558-c491-46f9-8a07-31834373f61d:indexpattern-datasource-layer-171e20a6-631d-4bf4-8bf3-eda9e75aaf35", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "1243ef52-3a6a-4c1e-a2c6-643a7231ab6a:indexpattern-datasource-layer-c932ebc5-5df5-4caa-bf09-12e99dc3c421", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "d7fbadb0-618f-4467-b6b9-962b18b968cf:indexpattern-datasource-layer-0244f8d2-e938-4d08-8107-efb64df49277", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "d7fbadb0-618f-4467-b6b9-962b18b968cf:94d12b4e-1b4e-47c2-b418-25ca180cdc8d", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "f772277f-7e86-47f8-ae04-cdb002409342:indexpattern-datasource-layer-fbf47563-00f1-4b20-bf5b-f3de5f04d69c", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "ec47f27d-acc4-410b-8951-3ec1f9661d3f:indexpattern-datasource-layer-001126ac-c245-4a17-b17d-311d93ce00d0", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "a6f36dfe-b6d6-4dca-b63c-81f5b4f7c8f8:indexpattern-datasource-layer-0244f8d2-e938-4d08-8107-efb64df49277", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "644c6151-fd05-4b2e-b18e-30843697e932:indexpattern-datasource-layer-1506c917-88d1-4b2f-a3c3-577e3e9317e6", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "3d5ccff8-6576-4a1c-b3ee-363ae665906e:indexpattern-datasource-layer-a2aaa4e5-7e3c-4db8-a802-8291314c7c8a", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "8fddd3bb-c1e6-4533-b075-1ab7361b3af0:indexpattern-datasource-layer-712d88c9-5550-417c-b829-f23937c5adc9", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "1a6dce1d-d039-4d18-87c7-1b700da676c2:indexpattern-datasource-layer-9c190389-3726-4c5e-a1e4-5daf7bcab81c", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "controlGroup_042f777a-5e41-41e8-9d6e-d842473a8aed:optionsListDataView", + "type": "index-pattern" + } + ], + "type": "dashboard" } \ No newline at end of file diff --git a/packages/azure/manifest.yml b/packages/azure/manifest.yml index cef546842d9..b20c0a7697d 100644 --- a/packages/azure/manifest.yml +++ b/packages/azure/manifest.yml @@ -1,6 +1,6 @@ name: azure title: Azure Logs -version: 1.5.21 +version: 1.5.22 release: ga description: This Elastic integration collects logs from Azure type: integration