Презентация подготовлена по материалам выступления Татьяны Франк на витебском Miniq #28, который был проведен 24 cентября 2020:
https://community-z.com/events/miniq-vitebsk-28
Про доклад:
Выпуск новых релизов Elastic Stack происходит ежеквартально и каждый релиз приносит новые функции и изменения в UX.К примеру, в версии 7.9 Elastic Enterprise Search представляет бесплатный продукт Workplace Search. Кроме того, мы выпускаем Elastic Agent (beta), который упростит загрузку данных, а бесплатная защита от вредоносного ПО теперь встроена в Elastic Security.Во время встречи мы пройдем по основным изменения в релизах 7.7 - 7.9.
4. 4
Radically
simplify
onboarding
Enhancing
analyst
experience
Uniting
SecOps &
DevOps
Curated at-a-glance view
of all observability data,
from all systems, on a
single page
First BIG step in our
vision to simplify data
onboarding down to
one agent and one click
OOTB detections on AWS
& Okta data, enabling
security teams to detect
threats, with no effort
Observability 7.9 Release Highlights
Observability Overview Elastic Agent & more50+ turnkey detections
6. 6
GIF
Elastic Agent & more
Data ingest is time-consuming piece
observability and security workflows
7.9 takes a first big step towards
radically simplifying data ingest
Vision: one agent, one click
integrations
NEW in 7.9
- Elastic Agent (beta)
- Ingest Manager (beta)
- 30 new integrations
(experimental or beta)
Radically simplify ingest
Basic | Beta
7. 7
BEFORE NOW
ON EVERY HOST:
● Filebeat for logs
● Metricbeat for metrics
● APM agents for app traces
● Heartbeat for uptime
● Endpoint for security
● Winlogbeat - windows data
ON EVERY HOST:
● Elastic Agent for logs,
metrics, and security.
Uptime, windows data and
traces coming soon.
One thing to install,
configure and scale.
Elastic Agent
Single unified agent to collects logs, metrics, and more
Basic | Beta
8. 8
GIF
One-click integrations
Quickly add integrations for NGINX
and ~40 more services & platforms
Default settings are automatically
filled in to save time
Use web forms instead of YAML files
Add data in seconds
Basic | Beta
10. 10
GIF
Observability Overview
Curated, at-a-glance view of your entire
ecosystem
Surface alerts and key metrics/charts, across
all data types, and all layers in stack
Speeds time to orient on the system health for
analysts and operators
Includes Newsfeed, Docs, and other helpful
information
Helps users discover and expand use cases —
more value from their investment
Enhancing analyst experience
11. 11
GIF
50 turnkey detections
Security is a top concern for orgs moving to
cloud or adopting new technology
Introducing 50 security detections (and ML
jobs) on data from AWS & Okta integrations
Enabling security teams to mine threat signals
from observability data, with zero effort
Included in the free & open detections repo
Detect threats using o11y data
17. 17
Improved Infrastructure Maps
How do you Inventory?
• Overall UI Facelift
• 6 Color Palettes
• New Sorting options
• Improved custom views
• Improved resource tooltips
Basic
18. 18
• Test Alert Conditions before saving
• Multiple groupings in alerts
‒ Alert me on every disk on every host
• More context parameters
Alerting
Alert creation flexibility
Basic | Beta
20. 20
● Machine learning jobs created for an
entire environment as opposed to
services
● All new services in an environment
with ML will automatically have ML
enabled
● Easier to get started (vs previous
versions)
● Feedback along the icon to indicate if
ML was enabled
Streamlined machine learning workflow
Easy to configure environments
Platinum | Beta
21. 21
New chart - Error Rate
● See where error rates (0100% are trending for
service/transaction.
● Visually correlate error rate changes with new
releases on the same timeline.
Transaction error charts
Easily ID errors
Basic | Beta
22. 22
Summary
1. Simplify Data onboarding: Agent
2. Observability overview and ML in dashboards
3. Uptime: Alerting and ML
4. APM: ML and Error Rate
5. Metrics: new UI and Alerting