[Google Workspace] - Duplicate Logs in google_workspace.alert #9373
Labels
bug
Something isn't working, use only for issues
Integration:google_workspace
Google Workspace
Team:Security-Service Integrations
Security Service Integrations Team [elastic/security-service-integrations]
Comments
jamiehynds
added
Integration:google_workspace
|
Pinging @elastic/security-service-integrations (Team:Security-Service Integrations) |
|
related elastic/beats#39859 |
|
Hi @ar3diu, here I can see that the fingerprints are the same, which means the fingerprint processor is working as expected. Elasticsearch should not index documents with same _id more than once. Something seems off here. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Integration name and version: Google Workspace 2.20.0
This integration writes duplicate log entries in the
google_workspace.alertdataset when using the default settings.I made a post about this back in december: https://elasticstack.slack.com/archives/C02J2JBS0FP/p1702896388318999
But I came across it again today.
Another user observed a similar behavior: https://elasticstack.slack.com/archives/C02J2JBS0FP/p1710176601575189
The text was updated successfully, but these errors were encountered: