Send CADF audit events to Elasticsearch Change-Id: I0c359bf7eccd8c401348880359d0f189fd9bd42b

commit: 4a51bfb9f0caf7b4043c94a269e42221616a3bfb [log] [tgz]
author: Simon Pasquier <spasquier@mirantis.com> Fri Jan 27 12:17:51 2017 +0100
committer: Simon Pasquier <spasquier@mirantis.com> Mon Jan 30 15:09:25 2017 +0100
tree: 5cf343df475daddd1c1e34f52200d664cabf7e83
parent: be584997a375619757d3b7fb4ddd3752bb37ca8f [diff]
diff --git a/heka/meta/heka.yml b/heka/meta/heka.yml
index 1d6c76f..3cd50d8 100644
--- a/heka/meta/heka.yml
+++ b/heka/meta/heka.yml

@@ -267,7 +267,7 @@
       engine: elasticsearch
       server: "http://{{ remote_collector.elasticsearch_host }}:{{ remote_collector.elasticsearch_port }}"
       encoder: elasticsearch_encoder
-      message_matcher: "Type == 'notification'"
+      message_matcher: "Type == 'notification' || Type == 'audit'"
   {%- endif %}
 {%- endif %}
 aggregator:
commit	4a51bfb9f0caf7b4043c94a269e42221616a3bfb	[log] [tgz]
author	Simon Pasquier <spasquier@mirantis.com>	Fri Jan 27 12:17:51 2017 +0100
committer	Simon Pasquier <spasquier@mirantis.com>	Mon Jan 30 15:09:25 2017 +0100
tree	5cf343df475daddd1c1e34f52200d664cabf7e83
parent	be584997a375619757d3b7fb4ddd3752bb37ca8f [diff]