Orchestrator
Fields relevant to container orchestrators.
Fields
Field Summary
| Field | Type | Level | Description |
|---|---|---|---|
orchestrator.api_version | keyword | Extended | API version being used to carry out the action |
orchestrator.cluster.id | keyword | Extended | Unique ID of the cluster. |
orchestrator.cluster.name | keyword | Extended | Name of the cluster. |
orchestrator.cluster.url | keyword | Extended | URL of the API used to manage the cluster. |
orchestrator.cluster.version | keyword | Extended | The version of the cluster. |
orchestrator.namespace | keyword | Extended | Namespace in which the action is taking place. |
orchestrator.organization | keyword | Extended | Organization affected by the event (for multi-tenant orchestrator setups). |
orchestrator.resource.annotation | keyword | Extended | The list of annotations added to the resource. |
orchestrator.resource.id | keyword | Extended | Unique ID of the resource being acted upon. |
orchestrator.resource.ip | ip | Extended | IP address assigned to the resource associated with the event being observed. |
orchestrator.resource.label | keyword | Extended | The list of labels added to the resource. |
orchestrator.resource.name | keyword | Extended | Name of the resource being acted upon. |
orchestrator.resource.parent.type | keyword | Extended | Type or kind of the parent resource associated with the event being observed. |
orchestrator.resource.type | keyword | Extended | Type of resource being acted upon. |
orchestrator.type | keyword | Extended | Orchestrator cluster type (e.g. kubernetes, nomad or cloudfoundry). |
Field Details
orchestrator.api_version
Type: keyword
Level: Extended
Description: API version being used to carry out the action
Example: v1beta1
Indexed: true
orchestrator.cluster.id
Type: keyword
Level: Extended
Description: Unique ID of the cluster.
Indexed: true
orchestrator.cluster.name
Type: keyword
Level: Extended
Description: Name of the cluster.
Indexed: true
orchestrator.cluster.url
Type: keyword
Level: Extended
Description: URL of the API used to manage the cluster.
Indexed: true
orchestrator.cluster.version
Type: keyword
Level: Extended
Description: The version of the cluster.
Indexed: true
orchestrator.namespace
Type: keyword
Level: Extended
Description: Namespace in which the action is taking place.
Example: kube-system
Indexed: true
orchestrator.organization
Type: keyword
Level: Extended
Description: Organization affected by the event (for multi-tenant orchestrator setups).
Example: elastic
Indexed: true
orchestrator.resource.annotation
Type: keyword
Level: Extended
Description: The list of annotations added to the resource.
Example: ['key1:value1', 'key2:value2', 'key3:value3']
Normalization: array
Indexed: true
orchestrator.resource.id
Type: keyword
Level: Extended
Description: Unique ID of the resource being acted upon.
Indexed: true
orchestrator.resource.ip
Type: ip
Level: Extended
Description: IP address assigned to the resource associated with the event being observed.
Normalization: array
Indexed: true
orchestrator.resource.label
Type: keyword
Level: Extended
Description: The list of labels added to the resource.
Example: ['key1:value1', 'key2:value2', 'key3:value3']
Normalization: array
Indexed: true
orchestrator.resource.name
Type: keyword
Level: Extended
Description: Name of the resource being acted upon.
Example: test-pod-cdcws
Indexed: true
orchestrator.resource.parent.type
Type: keyword
Level: Extended
Description: Type or kind of the parent resource associated with the event being observed.
Example: DaemonSet
Indexed: true
orchestrator.resource.type
Type: keyword
Level: Extended
Description: Type of resource being acted upon.
Example: service
Indexed: true
orchestrator.type
Type: keyword
Level: Extended
Description: Orchestrator cluster type (e.g. kubernetes, nomad or cloudfoundry).
Example: kubernetes
Indexed: true