Manage your projects
editManage your projects
edit[preview] This functionality is in technical preview and may be changed or removed in a future release. Elastic will work to fix any issues, but features in technical preview are not subject to the support SLA of official GA features.
To manage a project:
- Navigate to cloud.elastic.co.
- Log in to your Elastic Cloud account.
- Select your project from the Serverless projects panel and click Manage.
From the project page, you can:
- Rename your project. In the Overview section, click Edit next to the project’s name.
- Manage data and integrations. Update your project data, including storage settings, indices, and data views, directly in your project.
- Manage API keys. Access your project and interact with its data programmatically using Elasticsearch APIs.
- Manage members. Add members and manage their access to this project or other resources of your organization.
Search AI Lake settings
editOnce ingested, your data is stored in cost-efficient, general storage. A cache layer is available on top of the general storage for recent and frequently queried data that provides faster search speed. Data in this cache layer is considered search-ready.
Together, these data storage layers form your project’s Search AI Lake.
The total volume of search-ready data is the sum of the following:
- The volume of non-time series project data
- The volume of time series project data included in the Search Boost Window
Each project type offers different settings that let you adjust the performance and volume of search-ready data, as well as the features available in your projects.
Setting | Description | Available in |
---|---|---|
Search Power |
Search Power affects search speed by controlling the number of VCUs (Virtual Compute Units) allocated to search-ready data in the project. Additional VCUs provide more compute resources and result in performance gains. The Cost-efficient Search Power setting limits the available cache size, and generates cost savings by reducing search performance. The Balanced Search Power setting ensures that there is sufficient cache for all search-ready data, in order to respond quickly to queries. The Performance Search Power setting provides more computing resources in addition to the searchable data cache, in order to respond quickly to higher query volumes and more complex queries. |
|
Search Boost Window |
Non-time series data is always considered search-ready. The Search Boost Window determines the volume of time series project data that will be considered search-ready. Increasing the window results in a bigger portion of time series project data included in the total search-ready data volume. |
|
Data Retention |
Data retention policies determine how long your project data is retained. You can specify different retention periods for specific data streams in your project. |
|
Maximum data retention period When enabled, this setting determines the maximum length of time that data can be retained in any data streams of this project. Editing this setting replaces the data retention set for all data streams of the project that have a longer data retention defined. Data older than the new maximum retention period that you set is permanently deleted. |
||
Default data retention period When enabled, this setting determines the default retention period that is automatically applied to all data streams in your project that do not have a custom retention period already set. |
||
Project features |
Controls feature tiers and add-on options for your Elastic Security project. |
Project features and add-ons
editFor Elastic Security projects, edit the Project features to select a feature tier and enable add-on options for specific use cases.
Feature tier | Description and add-ons |
---|---|
Security Analytics Essentials |
Standard security analytics, detections, investigations, and collaborations. Allows these add-ons:
|
Security Analytics Complete |
Everything in Security Analytics Essentials plus advanced features such as entity analytics, threat intelligence, and more. Allows these add-ons:
|
Downgrading the feature tier
editWhen you downgrade your Security project features selection from Security Analytics Complete to Security Analytics Essentials, the following features become unavailable:
- All Entity Analytics features
-
The ability to use certain entity analytics-related integration packages, such as:
- Data Exfiltration detection
- Lateral Movement detection
- Living off the Land Attack detection
- Intelligence Indicators page
- External rule action connectors
- Case connectors
- Endpoint response actions history
- Endpoint host isolation exceptions
- AI Assistant
- Attack discovery
And, the following data may be permanently deleted:
- AI Assistant conversation history
- AI Assistant settings
- Entity Analytics user and host risk scores
- Entity Analytics asset criticality information
- Detection rule external connector settings
- Detection rule response action settings