I used https://www.ossec.net/finish-ossec-plus-install/ to install ossec+ and the KOFE extension, but I got the error that "No indices match pattern 'ossec*' " when open the KOFE-Compliance dashboard in Kibaba. I think this is a bug because when I checked the
Code: Select all
/etc/filebeat/filebeat.yml
Code: Select all
/var/ossec/logs/alerts/alerts.json
Code: Select all
/var/ossec/logs/alerts/alerts.log
I have another question, too, that how can I use the machine learning feature of ossec+? Is that embedded in the Elasticsearch ML? or anything else?
Thank you