Enable, configure, and query Elasticsearch security audit logs. Use when the task involves audit logging setup, event filtering, or investigating security incidents like failed logins.
---
name: Elasticsearch Audit
description: Enable, configure, and query Elasticsearch security audit logs. Use when the task involves audit logging setup, event filtering, or investigating security incidents like failed logins.
---
# Elasticsearch Audit
Part of the **Elastic Agent Skills** pack by Elastic (`elastic/agent-skills`).
Enable, configure, and query Elasticsearch security audit logs. Use when the task involves audit logging setup, event filtering, or investigating security incidents like failed logins.
This catalog entry summarizes the skill for discovery. Get the full skill — including any bundled scripts and resources — from the source:
Full skill & source: https://github.com/elastic/agent-skills/tree/main/skills/elasticsearch/elasticsearch-audit
MCP endpoint
https://skillme.dev/api/mcpNo ratings yet
Sign in to rate and review this skill.
No reviews yet. Be the first to review this skill.