Create elastic-edr.md
This commit is contained in:
BlackPerl
GitHub
parent
22109144ab
commit
9f0294c862
1 changed files with 31 additions and 0 deletions
31
installation/elastic-edr.md
Normal file
31
installation/elastic-edr.md
Normal file
|
|
@ -0,0 +1,31 @@
|
||||||
|
# 🤝HIRE US FOR FULL INSTALLATION🤝
|
||||||
|
|
||||||
|
Contact Info: archan.fiem.it@gmail.com, hk.sainaga@gmail.com
|
||||||
|
|
||||||
|
# EDR Installation Guide:
|
||||||
|
- Now we’re ready to install Elastic EDR First, navigate to the “Fleet” dashboard by clicking on the link under the management tab located on the side menu.
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
- From the fleet management menu, click “add agent”. Now it’s likely that you’ll be requested to add an integration policy before you can install agents, just follow the wizard and keep the defaults.
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
- We’re going to use the “Enroll in Fleet” option to install the EDR.
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
- First, download the Elastic Agent onto your Windows/Linux Host.
|
||||||
|
- Once you have the agent downloaded, keep the default policy selected under the Agent policy.
|
||||||
|
- Now we have to Add Agent. Click on the Button and follow the steps from console.
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
- If all has gone right, you should see the agent has been successfully enrolled via the fleet dashboard.
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
- We’re not done yet however, we need to check that data is being ingested correctly into ElasticSearch from our agent. You can do this by navigating to the Data Streams tab. You should see this populated with endpoint data. If there is no data here, check your fleet settings by clicking the settings cog in the top right corner. Ensure that your ElasticSearch settings are properly set to the correct IP and not set to LocalHost.
|
||||||
|
|
||||||
|
|
||||||
Loading…
Reference in a new issue