Page Comparison

Versions Compared

Key

This line was added.
This line was removed.
Formatting was changed.

...

In AMP, go to the Log Search screen.
Click on Discover.
Use the Change Index Pattern dropdown to view all customer accounts under your Partner account.
1. Click the View drop down, and change the Index Pattern to (Account ID)_partner.
2. Below the Search bar, click the link for +Add Filter
  1. Field = tenant.id
  2. Operator = is
  3. Value = (Partner Customer Account ID)
3. Below the Search bar, click the link for +Add Filter
  1. Filter #1
    1. Field = tags
    2. Operator = is not one of
    3. Values = armor_agent, windows, linux, oslogs
      1. Type *armor_agent* and hit enter
      2. Type *windows* and hit enter
      3. Type *linux* and hit enter
      4. Type *oslogs* and hit enter
    4. Hit Save
  2. Filter #2
    1. Field = data.type
    2. Operator = is not one of
    3. Values = trend
      1. Type *trend* and hit enter
    4. Filter #3
      1. Field = log.file.path
      2. Operator = is not one of
      3. Values = /opt/armor/filebeat
        Type */opt/armor/filebeat * and hit enter
      4. Hit Save
    5. Hit the Refresh button

...