Does OpenSearch support the Elastic Common Schema (ECS) standard?

sandyabcde · January 18, 2024, 10:31am

Hi,

The OpenSearch documentation mentions support for the ECS standard.
But I did not find any specific instructions on how to use this standard.
For example, use index templates and pipelines from the Filebeat distribution.
Due to the differences between OpenSearch and Elasticsearch, they cannot be used directly.
Is it described anywhere how to use them?

Kind Regards
Sandy

neographikal · January 18, 2024, 4:39pm

It doesn’t fully, some parts are still missing. I have asked for the match_text handler to be implemented, which was one of the larger missing pieces. Other stuff should be supported as well imho, you could create github issues for these. I would be thankful

Topic		Replies	Views
OpenSearch and Elastic Common Schema (ECS) OpenSearch	2	560	December 12, 2023
OpenSearch compatible ECS templates Community	2	853	February 14, 2023
Recommended value of pipeline.ecs_compatibility OpenSearch	1	1358	February 28, 2023
Compatibility with elasticsearch v8 General Feedback	1	619	June 24, 2023
Lots of beginner questions OpenDistro	11	2052	June 14, 2021

Does OpenSearch support the Elastic Common Schema (ECS) standard?

Related topics