You are looking at documentation for an older release. Not what you want? See the current release documentation.

    Overview  »

Winlogbeat Reference

---

• Winlogbeat Reference: master7.x7.27.1 (current)7.06.86.76.66.56.46.36.26.16.05.65.55.45.35.25.15.01.31.21.1
• Overview
• Getting Started With Winlogbeat
  • Step 1: Installing Winlogbeat
  • Step 2: Configuring Winlogbeat
  • Step 3: Configuring Winlogbeat to Use Logstash
  • Step 4: Loading the Index Template in Elasticsearch
  • Step 5: Starting Winlogbeat
  • Step 6: Loading Sample Kibana Dashboards
  • Command Line Options
  • Directory Layout
• Upgrading Winlogbeat
• Configuring Winlogbeat
  • Configuration Options (Reference)
    • Winlogbeat Configuration
    • General Configuration
    • Elasticsearch Output Configuration
    • Logstash Output Configuration
    • Kafka Output Configuration
    • Redis Output Configuration
    • File Output Configuration
    • Console Output Configuration
    • SSL Configuration
    • Paths Configuration
    • Logging Configuration
  • Processors
    • add_cloud_metadata
    • decode_json_fields
    • drop_event
    • drop_fields
    • include_fields
  • Filtering and Enhancing the Exported Data
  • Configuring Winlogbeat to Use Ingest Node
  • Using Environment Variables in the Configuration
  • YAML Tips and Gotchas
• Exported Fields
  • Beat Fields
  • Cloud Provider Metadata Fields
  • Common Winlogbeat Fields
  • Event Log Record Fields
• Securing Winlogbeat
  • Securing Communication With Elasticsearch
  • Securing Communication With Logstash by Using SSL
• Troubleshooting
  • Getting Help
  • Debugging
  • Frequently Asked Questions

    Overview  »

Getting Started Videos

• Starting Elasticsearch
• Introduction to Kibana
• Logstash Starter Guide