Jupyter notebook #6291
-
|
Hello Everyone! Are there any Security Onion professionals that have successfully intergraded jupyter notebooks to work with their SOv2 SIEM? |
Beta Was this translation helpful? Give feedback.
Replies: 1 comment 3 replies
-
|
I experimented with this on a previous version of the Elastic stack, when we weren't requiring auth/RBAC. You'll want to be careful about opening up your cluster from the firewall perspective, and you'll need to be mindful of the authentication details. Other than that, it should be pretty straightforward using the |
Beta Was this translation helpful? Give feedback.
-
|
So perhaps I should make a read only user for elastic and use those creds to connect to elastic on port 9200.... right? |
Beta Was this translation helpful? Give feedback.
-
|
@weslambert just added a new page to our documentation for this: |
Beta Was this translation helpful? Give feedback.
-
|
It helped alot. Thanks you guys! Your team is amazing!!! |
Beta Was this translation helpful? Give feedback.
I experimented with this on a previous version of the Elastic stack, when we weren't requiring auth/RBAC. You'll want to be careful about opening up your cluster from the firewall perspective, and you'll need to be mindful of the authentication details. Other than that, it should be pretty straightforward using the
elasticsearchlibrary for Python.