This documentation contains work-in-progress information for future Elastic Stack and Cloud releases. Use the version selector to view supported release docs. It also contains some Elastic Cloud serverless information. Check out our serverless docs for more details.
« Cases connector and action D3 Security connector and action »
Elastic Docs Kibana Guide [master] Stack Management Connectors

CrowdStrike connector

edit

CrowdStrike connector

edit

This functionality is in technical preview and may be changed or removed in a future release. Elastic will work to fix any issues, but features in technical preview are not subject to the support SLA of official GA features.

The CrowdStrike connector communicates with CrowdStrike Management Console via REST API.

Create connectors in Kibana

edit

You can create connectors in Stack Management > Connectors. For example:

Crowdstrike connector
Connector configuration
edit

CrowdStrike connectors have the following configuration properties:

CrowdStrike API URL
The CrowdStrike tenant URL. If you are using the xpack.actions.allowedHosts setting, make sure the hostname is added to the allowed hosts.
CrowdStrike Client ID
A CrowdStrike API client ID.
Client Secret
A CrowdStrike API client secret created by the user.

Test connectors

edit

At this time, you cannot test the CrowdStrike connector.

« Cases connector and action D3 Security connector and action »