Storage Times
The following defaults can be customized via the configuration file, with the following default values set:
Metrics (hosts/endpoints): 14 days
System events (hosts): 3 days
Network anomalies (hosts): 3 days
Audits (pentests): 90 days
Activity log: 6 months
PDFs: 1 year
If you customize a configuration file on the application server, you must always run setup.sh afterwards. Only then will the settings be applied.
Be sure to follow the JSON format. In case of problems, use a JSON validator to verify that the entire file is compliant.
Open the configuration file.
sudo nano /opt/enginsight/enterprise/conf/services/config.jsonAdd or adjust the values of the following
indexesparameters to the existing sectiondatabase. The storage time is specified in seconds. Leave the value ofuriConnectionStringas you find it in yourconfig.json.
database without defined storage times:
"database": {
"uriConnectionString": "%%MONGODB_URI%%"
},The extended section then looks like this:
"database": {
"uriConnectionString": "%%MONGODB_URI%%",
"indexes": {
"siemIncidents": {
"ttl": 7776000
},
"siemExports": {
"ttl": 2592000
},
"shieldLogs": {
"ttl": 2592000
},
"hostFimLogs": {
"ttl": 86400
},
"pentestAudits": {
"ttl": 7776000
},
"endpointWebsites": {
"ttl": 1209600
},
"hostMetrics": {
"ttl": 1209600
},
"hostEvents": {
"ttl": 259200
},
"hostNetworkAttacks": {
"ttl": 259200
},
"history": {
"ttl": 15552000
},
"reportsPDFs": {
"ttl": 31536000
}
}
},3. Save the configuration file (Ctrl+o) and confirm the saving process. Close nano (Ctrl+x).
4. Navigate to /opt/enginsight/enterprise
cd /opt/enginsight/enterprise5. Update your installation for the changes to take effect.
sudo ./setup.shLast updated
Was this helpful?