Skip to main content

Send Torq Audit and Activity Logs to Elasticsearch - Workflow Template

Pull the logs from Torq on a schedule and send to Elasticsearch in a batch transaction.

Updated yesterday

The "Send Torq Audit and Activity Logs to Elasticsearch" workflow template is designed to streamline log management by automating the collection and transfer of audit and activity logs from Torq to Elasticsearch. This workflow is ideal for businesses seeking to enhance their data analysis capabilities by storing logs in separate indexes for detailed examination. By scheduling regular log retrievals and utilizing batch uploads, organizations can efficiently manage large volumes of data, ensuring seamless integration with Elasticsearch for advanced analytics and reporting.

Take Me to the Template

Use Cases

Example , Function

Workflow Breakdown

  1. Set the required parameters in the Workflow Context for the Elasticsearch Indexes.

  2. Pull the desired logs using the included nested workflow.

  3. Transform the logs into one log per line and a create command line before each log line.

  4. Use _bulk endpoint to upload all logs in a single API call.

Vendors

Utils, HTTP, Torq

Workflow Output

Logs will be stored in separated Indexes for further analysis.

Tips

  • Use 'Analytics' to create Activity and Audit Dashboards.

Related Articles
Collect Torq Audit or Activity Logs - Workflow Template
Send Torq Audit and Activity Logs to Snowflake - Workflow Template
Send Torq Audit or Activity logs to Sumo Logic on a Schedule - Workflow Template
Send Torq Audit or Activity Logs on a Schedule to Splunk - Workflow Template
Gather Torq Audit or Activity Logs - Workflow Template
Did this answer your question?