field [o365audit] not present as part of path [o365audit.CreationTime]
I suddenly started to getting the error: field [o365audit] not present as part of path [o365audit.CreationTime]
Integration: Office 365 Logs Version: 1.4.1 Agent Version: 7.17.3
I cannot get the logs, could you please help?
I also tried to change the ingest pipeline to see from o365audit.CreationTime to o365.audit.CreationTime BCS of the log schema
but this time gave the error field [o365] not present as part of path [o365.audit.CreationTime]
Finally, the problem solved.
- First, I've checked the related fields on the pipeline.
- Then I wondered what is gonna happen after ignoring the failures.
- Saved the pipeline and checked the logs.
unable to acquire authentication token for tenant:xxx: refreshing spt token: : Refresh request failed. Status Code = '401'. Response body: {"error":"invalid_client","error_description":"AADSTS7000222: The provided client secret keys for app 'xxxx' are expired. Visit the Azure portal to create new keys for your app: https://aka.ms/NewClientSecret, or consider using certificate credentials for added security: https://aka.ms/certCreds.\r\nTrace
- This means the secret key is expired. Created new key and edited the integration. Problem solved.
- brew install elasticsearch on M1 macbook results in "Bad CPU type in executable" error
- Spring Data Elasticsearch Bulk Index/Delete - Millions of Records
- fluentd with OpenSearch - where does the @timestamp field come from?
- Storing and managing Forex trading tick data
- mongodb fulltext searching strategy
- Is it possible to use elasticsearch synonyms dynamically?
- Elasticsearch showing received plaintext http traffic on an https channel in console
- Wildcard/regexp query with asterix chacter
- How to Count Unique Assets with Specific Severity in Elasticsearch?
- Am I correct that Elasticsearch simple_query_string does not support wildcards, but only prefix queries?
- ElasticSearch text array length
- Elasticsearch Nested Aggregations with Spring data elasticsearch 5.2
- How to check that all shards are moved from a specific elasticsearch node?
- How do to an Elasticsearch ESQL Distinct Query?
- How can I add a field to existing mapping with values in other fields?
- Elastic Search sort documents with same score using another field value
- OpenSearch with Spring Boot - Displaying docuemnts by number of keywors
- How to one value come first during sort on that field Elastic Search
- Retrieve selected fields from a search
- Logstash main class JvmOptionsParser not found / cannot load
- What is the difference between standard and language analyzer in Elasticsearch?
- How can I count all the occurrences within my date_histogram?
- Reliable .NET API for Elastic Search
- Not working fuzzy logic when use the fuzzines.auto elasticsearch
- Yellow health status on elastic causing kibana to fail at launch?
- How to Enable Logging in Rails Application with OpenSearch and Searchkick Integration?
- ElasticSearch - Unable To Search Using Fuzzy Match Query For Underscore in value (ES Fuzzy not matching underscore value)
- registering a custom analyzer and using it in a template
- Elasticsearch implement off-the-shelf language analyser but use custom tokeniser
- KQL query Count and Limit Matching Documents in Time Frame