[Jamf Protect] Enhancements and added dashboard for Telemetry

[txhaflaire]

Type of change:

• Enhancement

Proposed commit message

• Added new Dashboard related to Telemetry data stream provided by Jamf Protect.
• Updated some events and pipelines

Checklist

• I have reviewed tips for building integrations and this pull request is aligned with them.
• I have verified that all data streams collect metrics or logs.
• I have added an entry to my package's changelog.yml file.
• I have verified that Kibana version constraints are current according to guidelines.

How to test this PR locally

elastic-package test system

2024/06/27 10:47:56  INFO Write container logs to file: /Users/thijs.xhaflaire/Documents/GitHub/Elastic/integrations/build/container-logs/jamf-protect-webtraffic-http-endpoint-1719478076140462000.log
--- Test results for package: jamf_protect - START ---
╭──────────────┬────────────────────┬───────────┬───────────────┬────────┬────────────────╮
│ PACKAGE      │ DATA STREAM        │ TEST TYPE │ TEST NAME     │ RESULT │   TIME ELAPSED │
├──────────────┼────────────────────┼───────────┼───────────────┼────────┼────────────────┤
│ jamf_protect │ alerts             │ system    │ http-endpoint │ PASS   │ 1m3.613952958s │
│ jamf_protect │ telemetry          │ system    │ http-endpoint │ PASS   │ 1m2.010388209s │
│ jamf_protect │ telemetry_legacy   │ system    │ http-endpoint │ PASS   │  1m0.03619975s │
│ jamf_protect │ web_threat_events  │ system    │ http-endpoint │ PASS   │  59.141154542s │
│ jamf_protect │ web_traffic_events │ system    │ http-endpoint │ PASS   │  1m1.34401175s │
╰──────────────┴────────────────────┴───────────┴───────────────┴────────┴────────────────╯
--- Test results for package: jamf_protect - END   ---
Done

[efd6]

/test

[efd6]

Can you post a screen shot of the dashboard?

[txhaflaire]

@efd6 Sure!

[efd6]

These two images will need to have references in the screenshots list in the package manifest.yml.

[txhaflaire]

@efd6 check - just pushed an update to the manifest.yml file

[efd6]

The text block at the bottom of this screenshot, is it related to a visualisation? Similar query about the "Authentications and Authorizations" and the "Process Executions" texts in the second screenshot here.

[txhaflaire]

@efd6 Yes - the text blocks do explain the visualisation and why that piece of information is relevant.

[efd6]

I'm trying to understand which text goes with which visualisation. If the text below the visualisation explains it, could it go in the text box to the left of it? The current layout doesn't make it immediately obvious what things are connected.

[txhaflaire]

@efd6 maybe this scrolling-screenshots helps as it shows the complete dashboard.

[efd6]

Ah, I think I have it. The floating boxes are supposed to be headings for the things below them. Is that correct? This is a bit confusing since there is no equivalently styled heading for the other sections. The following is how I interpret it (red boxes form groups).

Can you also fix up the widget alignments.

[txhaflaire]

@efd6 pushed up the new dashboard and screenshots.

[efd6]

/test

[elasticmachine]

🚀 Benchmarks report

To see the full report comment with /test benchmark fullreport

[efd6]

/test

[efd6]

/test

[elasticmachine]

💚 Build Succeeded

• Buildkite Build
• Commit: bfd996d

History

• 💚 Build #13041 succeeded 6be6bd7
• 💚 Build #13039 succeeded 21b05e9
• 💚 Build #12948 succeeded fc35f81

[elastic-sonarqube]

Quality Gate passed

Issues
0 New issues
0 Fixed issues
0 Accepted issues

Measures
0 Security Hotspots
88.3% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube

[efd6]

Thanks