Like 0
Fork 0

Last active 13 hours ago

guest revised this gist 13 hours ago. Go to revision

1 file changed, 15 insertions, 3 deletions

grafana.json

@@ -5,8 +5,8 @@
5 5 "name": "ad-samba-audit",
6 6 "namespace": "default",
7 7 "uid": "092a783d-214c-46fa-b429-7cb5b93a3f65",
8 - "resourceVersion": "1782393736792011",
9 - "generation": 9,
8 + "resourceVersion": "1782469594734004",
9 + "generation": 12,
10 10 "creationTimestamp": "2026-06-09T12:20:41Z",
11 11 "labels": {
12 12 "grafana.app/deprecatedInternalID": "1673156113694720"
@@ -16,7 +16,7 @@
16 16 "grafana.app/folder": "",
17 17 "grafana.app/saved-from-ui": "Grafana v13.0.1+security-01 (9bbe672d)",
18 18 "grafana.app/updatedBy": "user:efm4lmr01b20wa",
19 - "grafana.app/updatedTimestamp": "2026-06-25T13:22:16Z"
19 + "grafana.app/updatedTimestamp": "2026-06-26T10:26:34Z"
20 20 }
21 21 },
22 22 "spec": {
@@ -1220,6 +1220,12 @@
1220 1220 "key": "rcode::field",
1221 1221 "operator": "=",
1222 1222 "value": "0"
1223 + },
1224 + {
1225 + "condition": "AND",
1226 + "key": "direction::tag",
1227 + "operator": "=",
1228 + "value": "out_packet"
1223 1229 }
1224 1230 ]
1225 1231 }
@@ -1279,6 +1285,12 @@
1279 1285 "key": "rcode::field",
1280 1286 "operator": "=",
1281 1287 "value": "3"
1288 + },
1289 + {
1290 + "condition": "AND",
1291 + "key": "direction::tag",
1292 + "operator": "=",
1293 + "value": "out_packet"
1282 1294 }
1283 1295 ]
1284 1296 }

guest revised this gist 1 day ago. Go to revision

1 file changed, 1430 insertions, 1448 deletions

grafana.json

@@ -1,1600 +1,1582 @@
1 1 {
2 - "annotations": [
3 - {
4 - "kind": "AnnotationQuery",
5 - "spec": {
6 - "builtIn": true,
7 - "enable": true,
8 - "hide": true,
9 - "iconColor": "rgba(0, 211, 255, 1)",
10 - "name": "Annotations & Alerts",
11 - "query": {
12 - "group": "grafana",
13 - "kind": "DataQuery",
14 - "spec": {},
15 - "version": "v0"
2 + "apiVersion": "dashboard.grafana.app/v2",
3 + "kind": "Dashboard",
4 + "metadata": {
5 + "name": "ad-samba-audit",
6 + "namespace": "default",
7 + "uid": "092a783d-214c-46fa-b429-7cb5b93a3f65",
8 + "resourceVersion": "1782393736792011",
9 + "generation": 9,
10 + "creationTimestamp": "2026-06-09T12:20:41Z",
11 + "labels": {
12 + "grafana.app/deprecatedInternalID": "1673156113694720"
13 + },
14 + "annotations": {
15 + "grafana.app/createdBy": "user:efm4lmr01b20wa",
16 + "grafana.app/folder": "",
17 + "grafana.app/saved-from-ui": "Grafana v13.0.1+security-01 (9bbe672d)",
18 + "grafana.app/updatedBy": "user:efm4lmr01b20wa",
19 + "grafana.app/updatedTimestamp": "2026-06-25T13:22:16Z"
20 + }
21 + },
22 + "spec": {
23 + "annotations": [
24 + {
25 + "kind": "AnnotationQuery",
26 + "spec": {
27 + "query": {
28 + "kind": "DataQuery",
29 + "group": "grafana",
30 + "version": "v0",
31 + "spec": {}
32 + },
33 + "enable": true,
34 + "hide": true,
35 + "iconColor": "rgba(0, 211, 255, 1)",
36 + "name": "Annotations & Alerts",
37 + "builtIn": true
16 38 }
17 39 }
18 - }
19 - ],
20 - "cursorSync": "Off",
21 - "editable": true,
22 - "elements": {
23 - "panel-1": {
24 - "kind": "Panel",
25 - "spec": {
26 - "data": {
27 - "kind": "QueryGroup",
28 - "spec": {
29 - "queries": [
30 - {
31 - "kind": "PanelQuery",
32 - "spec": {
33 - "hidden": false,
34 - "query": {
35 - "datasource": {
36 - "name": "afoiuzkkxju2of"
37 - },
38 - "group": "influxdb",
39 - "kind": "DataQuery",
40 - "spec": {
41 - "alias": "machine_login",
42 - "groupBy": [
43 - {
44 - "params": [
45 - "$interval"
46 - ],
47 - "type": "time"
48 - },
49 - {
50 - "params": [
51 - "domain::tag"
52 - ],
53 - "type": "tag"
54 - },
55 - {
56 - "params": [
57 - "null"
58 - ],
59 - "type": "fill"
60 - }
61 - ],
62 - "measurement": "samba_auth",
63 - "orderByTime": "ASC",
64 - "policy": "default",
65 - "query": "SELECT count(\"client_account\") FROM \"samba_auth\" WHERE (\"status\"::tag = 'NT_STATUS_OK' AND \"account\"::tag =~ /^MACHINE/) AND $timeFilter GROUP BY time($interval), \"domain\"::tag fill(null)",
66 - "rawQuery": false,
67 - "resultFormat": "time_series",
68 - "select": [
69 - [
40 + ],
41 + "cursorSync": "Off",
42 + "editable": true,
43 + "elements": {
44 + "panel-1": {
45 + "kind": "Panel",
46 + "spec": {
47 + "id": 1,
48 + "title": "Logins OK",
49 + "description": "Успешные входы в домен (samba_auth): машинные и пользовательские, разбивка по домену.",
50 + "links": [],
51 + "data": {
52 + "kind": "QueryGroup",
53 + "spec": {
54 + "queries": [
55 + {
56 + "kind": "PanelQuery",
57 + "spec": {
58 + "query": {
59 + "kind": "DataQuery",
60 + "group": "influxdb",
61 + "version": "v0",
62 + "datasource": {
63 + "name": "afoiuzkkxju2of"
64 + },
65 + "spec": {
66 + "alias": "machine_login",
67 + "groupBy": [
68 + {
69 + "params": [
70 + "$interval"
71 + ],
72 + "type": "time"
73 + },
74 + {
75 + "params": [
76 + "domain::tag"
77 + ],
78 + "type": "tag"
79 + },
70 80 {
71 81 "params": [
72 - "client_account"
82 + "null"
73 83 ],
74 - "type": "field"
84 + "type": "fill"
85 + }
86 + ],
87 + "measurement": "samba_auth",
88 + "orderByTime": "ASC",
89 + "policy": "default",
90 + "query": "SELECT count(\"client_account\") FROM \"samba_auth\" WHERE (\"status\"::tag = 'NT_STATUS_OK' AND \"account\"::tag =~ /^MACHINE/) AND $timeFilter GROUP BY time($interval), \"domain\"::tag fill(null)",
91 + "rawQuery": false,
92 + "resultFormat": "time_series",
93 + "select": [
94 + [
95 + {
96 + "params": [
97 + "client_account"
98 + ],
99 + "type": "field"
100 + },
101 + {
102 + "params": [],
103 + "type": "count"
104 + }
105 + ]
106 + ],
107 + "tags": [
108 + {
109 + "key": "status::tag",
110 + "operator": "=",
111 + "value": "NT_STATUS_OK"
75 112 },
76 113 {
77 - "params": [],
78 - "type": "count"
114 + "condition": "AND",
115 + "key": "account::tag",
116 + "operator": "=~",
117 + "value": "/^MACHINE/"
79 118 }
80 119 ]
81 - ],
82 - "tags": [
83 - {
84 - "key": "status::tag",
85 - "operator": "=",
86 - "value": "NT_STATUS_OK"
87 - },
88 - {
89 - "condition": "AND",
90 - "key": "account::tag",
91 - "operator": "=~",
92 - "value": "/^MACHINE/"
93 - }
94 - ]
95 - },
96 - "version": "v0"
97 - },
98 - "refId": "A"
99 - }
100 - },
101 - {
102 - "kind": "PanelQuery",
103 - "spec": {
104 - "hidden": false,
105 - "query": {
106 - "datasource": {
107 - "name": "afoiuzkkxju2of"
120 + }
108 121 },
109 - "group": "influxdb",
110 - "kind": "DataQuery",
111 - "spec": {
112 - "alias": "user_login",
113 - "groupBy": [
114 - {
115 - "params": [
116 - "$interval"
117 - ],
118 - "type": "time"
119 - },
120 - {
121 - "params": [
122 - "domain::tag"
123 - ],
124 - "type": "tag"
125 - },
126 - {
127 - "params": [
128 - "null"
129 - ],
130 - "type": "fill"
131 - }
132 - ],
133 - "measurement": "samba_auth",
134 - "orderByTime": "ASC",
135 - "policy": "default",
136 - "query": "SELECT count(\"client_account\") FROM \"samba_auth\" WHERE (\"status\"::tag = 'NT_STATUS_OK' AND \"account\"::tag =~ /^user/) AND $timeFilter GROUP BY time($interval), \"domain\"::tag fill(null)",
137 - "rawQuery": false,
138 - "resultFormat": "time_series",
139 - "select": [
140 - [
122 + "refId": "A",
123 + "hidden": false
124 + }
125 + },
126 + {
127 + "kind": "PanelQuery",
128 + "spec": {
129 + "query": {
130 + "kind": "DataQuery",
131 + "group": "influxdb",
132 + "version": "v0",
133 + "datasource": {
134 + "name": "afoiuzkkxju2of"
135 + },
136 + "spec": {
137 + "alias": "user_login",
138 + "groupBy": [
139 + {
140 + "params": [
141 + "$interval"
142 + ],
143 + "type": "time"
144 + },
141 145 {
142 146 "params": [
143 - "client_account"
147 + "domain::tag"
144 148 ],
145 - "type": "field"
149 + "type": "tag"
146 150 },
147 151 {
148 - "params": [],
149 - "type": "count"
152 + "params": [
153 + "null"
154 + ],
155 + "type": "fill"
156 + }
157 + ],
158 + "measurement": "samba_auth",
159 + "orderByTime": "ASC",
160 + "policy": "default",
161 + "query": "SELECT count(\"client_account\") FROM \"samba_auth\" WHERE (\"status\"::tag = 'NT_STATUS_OK' AND \"account\"::tag =~ /^user/) AND $timeFilter GROUP BY time($interval), \"domain\"::tag fill(null)",
162 + "rawQuery": false,
163 + "resultFormat": "time_series",
164 + "select": [
165 + [
166 + {
167 + "params": [
168 + "client_account"
169 + ],
170 + "type": "field"
171 + },
172 + {
173 + "params": [],
174 + "type": "count"
175 + }
176 + ]
177 + ],
178 + "tags": [
179 + {
180 + "key": "status::tag",
181 + "operator": "=",
182 + "value": "NT_STATUS_OK"
183 + },
184 + {
185 + "condition": "AND",
186 + "key": "account::tag",
187 + "operator": "=~",
188 + "value": "/^user/"
189 + },
190 + {
191 + "condition": "OR",
192 + "key": "account::tag",
193 + "operator": "=~",
194 + "value": "/^loadtest/"
150 195 }
151 196 ]
152 - ],
153 - "tags": [
154 - {
155 - "key": "status::tag",
156 - "operator": "=",
157 - "value": "NT_STATUS_OK"
158 - },
159 - {
160 - "condition": "AND",
161 - "key": "account::tag",
162 - "operator": "=~",
163 - "value": "/^user/"
164 - },
165 - {
166 - "condition": "OR",
167 - "key": "account::tag",
168 - "operator": "=~",
169 - "value": "/^loadtest/"
170 - }
171 - ]
197 + }
172 198 },
173 - "version": "v0"
174 - },
175 - "refId": "B"
199 + "refId": "B",
200 + "hidden": false
201 + }
176 202 }
177 - }
178 - ],
179 - "queryOptions": {},
180 - "transformations": []
181 - }
182 - },
183 - "description": "Успешные входы в домен (samba_auth): машинные и пользовательские, разбивка по домену.",
184 - "id": 1,
185 - "links": [],
186 - "title": "Logins OK",
187 - "vizConfig": {
188 - "group": "timeseries",
189 - "kind": "VizConfig",
190 - "spec": {
191 - "fieldConfig": {
192 - "defaults": {
193 - "color": {
194 - "mode": "palette-classic"
203 + ],
204 + "transformations": [],
205 + "queryOptions": {}
206 + }
207 + },
208 + "vizConfig": {
209 + "kind": "VizConfig",
210 + "group": "timeseries",
211 + "version": "13.0.1+security-01",
212 + "spec": {
213 + "options": {
214 + "annotations": {
215 + "clustering": -1,
216 + "multiLane": false
195 217 },
196 - "custom": {
197 - "axisBorderShow": false,
198 - "axisCenteredZero": false,
199 - "axisColorMode": "text",
200 - "axisLabel": "",
201 - "axisPlacement": "auto",
202 - "barAlignment": 0,
203 - "barWidthFactor": 0.6,
204 - "drawStyle": "line",
205 - "fillOpacity": 10,
206 - "gradientMode": "none",
207 - "hideFrom": {
208 - "legend": false,
209 - "tooltip": false,
210 - "viz": false
211 - },
212 - "insertNulls": false,
213 - "lineInterpolation": "smooth",
214 - "lineWidth": 1,
215 - "pointSize": 5,
216 - "scaleDistribution": {
217 - "type": "linear"
218 + "legend": {
219 + "calcs": [],
220 + "displayMode": "list",
221 + "placement": "bottom",
222 + "showLegend": true
223 + },
224 + "tooltip": {
225 + "hideZeros": false,
226 + "mode": "single",
227 + "sort": "none"
228 + }
229 + },
230 + "fieldConfig": {
231 + "defaults": {
232 + "thresholds": {
233 + "mode": "absolute",
234 + "steps": [
235 + {
236 + "value": 0,
237 + "color": "green"
238 + },
239 + {
240 + "value": 80,
241 + "color": "red"
242 + }
243 + ]
218 244 },
219 - "showPoints": "auto",
220 - "showValues": false,
221 - "spanNulls": false,
222 - "stacking": {
223 - "group": "A",
224 - "mode": "none"
245 + "color": {
246 + "mode": "palette-classic"
225 247 },
226 - "thresholdsStyle": {
227 - "mode": "off"
228 - }
229 - },
230 - "thresholds": {
231 - "mode": "absolute",
232 - "steps": [
233 - {
234 - "color": "green",
235 - "value": 0
248 + "custom": {
249 + "axisBorderShow": false,
250 + "axisCenteredZero": false,
251 + "axisColorMode": "text",
252 + "axisLabel": "",
253 + "axisPlacement": "auto",
254 + "barAlignment": 0,
255 + "barWidthFactor": 0.6,
256 + "drawStyle": "line",
257 + "fillOpacity": 10,
258 + "gradientMode": "none",
259 + "hideFrom": {
260 + "legend": false,
261 + "tooltip": false,
262 + "viz": false
263 + },
264 + "insertNulls": false,
265 + "lineInterpolation": "smooth",
266 + "lineWidth": 1,
267 + "pointSize": 5,
268 + "scaleDistribution": {
269 + "type": "linear"
236 270 },
237 - {
238 - "color": "red",
239 - "value": 80
271 + "showPoints": "auto",
272 + "showValues": false,
273 + "spanNulls": false,
274 + "stacking": {
275 + "group": "A",
276 + "mode": "none"
277 + },
278 + "thresholdsStyle": {
279 + "mode": "off"
240 280 }
241 - ]
242 - }
243 - },
244 - "overrides": []
245 - },
246 - "options": {
247 - "annotations": {
248 - "clustering": -1,
249 - "multiLane": false
250 - },
251 - "legend": {
252 - "calcs": [],
253 - "displayMode": "list",
254 - "placement": "bottom",
255 - "showLegend": true
256 - },
257 - "tooltip": {
258 - "hideZeros": false,
259 - "mode": "single",
260 - "sort": "none"
281 + }
282 + },
283 + "overrides": []
261 284 }
262 285 }
263 - },
264 - "version": "13.0.1+security-01"
286 + }
265 287 }
266 - }
267 - },
268 - "panel-2": {
269 - "kind": "Panel",
270 - "spec": {
271 - "data": {
272 - "kind": "QueryGroup",
273 - "spec": {
274 - "queries": [
275 - {
276 - "kind": "PanelQuery",
277 - "spec": {
278 - "hidden": false,
279 - "query": {
280 - "datasource": {
281 - "name": "afoiuzkkxju2of"
282 - },
283 - "group": "influxdb",
284 - "kind": "DataQuery",
285 - "spec": {
286 - "groupBy": [],
287 - "measurement": "samba_dsdb",
288 - "orderByTime": "ASC",
289 - "policy": "default",
290 - "query": "SELECT count(\"status_code\") FROM \"samba_dsdb\" WHERE $timeFilter GROUP BY time($interval), \"operation\"::tag fill(null)",
291 - "rawQuery": true,
292 - "resultFormat": "time_series",
293 - "select": [],
294 - "tags": []
288 + },
289 + "panel-2": {
290 + "kind": "Panel",
291 + "spec": {
292 + "id": 2,
293 + "title": "DSDB: изменения по операциям",
294 + "description": "Число изменений объектов каталога (samba_dsdb), разбивка по типу операции.",
295 + "links": [],
296 + "data": {
297 + "kind": "QueryGroup",
298 + "spec": {
299 + "queries": [
300 + {
301 + "kind": "PanelQuery",
302 + "spec": {
303 + "query": {
304 + "kind": "DataQuery",
305 + "group": "influxdb",
306 + "version": "v0",
307 + "datasource": {
308 + "name": "afoiuzkkxju2of"
309 + },
310 + "spec": {
311 + "groupBy": [],
312 + "measurement": "samba_dsdb",
313 + "orderByTime": "ASC",
314 + "policy": "default",
315 + "query": "SELECT count(\"status_code\") FROM \"samba_dsdb\" WHERE $timeFilter GROUP BY time($interval), \"operation\"::tag fill(null)",
316 + "rawQuery": true,
317 + "resultFormat": "time_series",
318 + "select": [],
319 + "tags": []
320 + }
295 321 },
296 - "version": "v0"
297 - },
298 - "refId": "A"
322 + "refId": "A",
323 + "hidden": false
324 + }
299 325 }
300 - }
301 - ],
302 - "queryOptions": {},
303 - "transformations": []
304 - }
305 - },
306 - "description": "Число изменений объектов каталога (samba_dsdb), разбивка по типу операции.",
307 - "id": 2,
308 - "links": [],
309 - "title": "DSDB: изменения по операциям",
310 - "vizConfig": {
311 - "group": "timeseries",
312 - "kind": "VizConfig",
313 - "spec": {
314 - "fieldConfig": {
315 - "defaults": {
316 - "color": {
317 - "mode": "palette-classic"
326 + ],
327 + "transformations": [],
328 + "queryOptions": {}
329 + }
330 + },
331 + "vizConfig": {
332 + "kind": "VizConfig",
333 + "group": "timeseries",
334 + "version": "13.0.1+security-01",
335 + "spec": {
336 + "options": {
337 + "annotations": {
338 + "clustering": -1,
339 + "multiLane": false
318 340 },
319 - "custom": {
320 - "axisBorderShow": false,
321 - "axisCenteredZero": false,
322 - "axisColorMode": "text",
323 - "axisLabel": "",
324 - "axisPlacement": "auto",
325 - "barAlignment": 0,
326 - "barWidthFactor": 0.6,
327 - "drawStyle": "bars",
328 - "fillOpacity": 50,
329 - "gradientMode": "none",
330 - "hideFrom": {
331 - "legend": false,
332 - "tooltip": false,
333 - "viz": false
334 - },
335 - "insertNulls": false,
336 - "lineInterpolation": "linear",
337 - "lineWidth": 1,
338 - "pointSize": 5,
339 - "scaleDistribution": {
340 - "type": "linear"
341 + "legend": {
342 + "calcs": [],
343 + "displayMode": "list",
344 + "placement": "bottom",
345 + "showLegend": true
346 + },
347 + "tooltip": {
348 + "hideZeros": false,
349 + "mode": "multi",
350 + "sort": "desc"
351 + }
352 + },
353 + "fieldConfig": {
354 + "defaults": {
355 + "thresholds": {
356 + "mode": "absolute",
357 + "steps": [
358 + {
359 + "value": 0,
360 + "color": "green"
361 + },
362 + {
363 + "value": 80,
364 + "color": "red"
365 + }
366 + ]
341 367 },
342 - "showPoints": "auto",
343 - "showValues": false,
344 - "spanNulls": false,
345 - "stacking": {
346 - "group": "A",
347 - "mode": "normal"
368 + "color": {
369 + "mode": "palette-classic"
348 370 },
349 - "thresholdsStyle": {
350 - "mode": "off"
351 - }
352 - },
353 - "thresholds": {
354 - "mode": "absolute",
355 - "steps": [
356 - {
357 - "color": "green",
358 - "value": 0
371 + "custom": {
372 + "axisBorderShow": false,
373 + "axisCenteredZero": false,
374 + "axisColorMode": "text",
375 + "axisLabel": "",
376 + "axisPlacement": "auto",
377 + "barAlignment": 0,
378 + "barWidthFactor": 0.6,
379 + "drawStyle": "bars",
380 + "fillOpacity": 50,
381 + "gradientMode": "none",
382 + "hideFrom": {
383 + "legend": false,
384 + "tooltip": false,
385 + "viz": false
359 386 },
360 - {
361 - "color": "red",
362 - "value": 80
387 + "insertNulls": false,
388 + "lineInterpolation": "linear",
389 + "lineWidth": 1,
390 + "pointSize": 5,
391 + "scaleDistribution": {
392 + "type": "linear"
393 + },
394 + "showPoints": "auto",
395 + "showValues": false,
396 + "spanNulls": false,
397 + "stacking": {
398 + "group": "A",
399 + "mode": "normal"
400 + },
401 + "thresholdsStyle": {
402 + "mode": "off"
363 403 }
364 - ]
365 - }
366 - },
367 - "overrides": []
368 - },
369 - "options": {
370 - "annotations": {
371 - "clustering": -1,
372 - "multiLane": false
373 - },
374 - "legend": {
375 - "calcs": [],
376 - "displayMode": "list",
377 - "placement": "bottom",
378 - "showLegend": true
379 - },
380 - "tooltip": {
381 - "hideZeros": false,
382 - "mode": "multi",
383 - "sort": "desc"
404 + }
405 + },
406 + "overrides": []
384 407 }
385 408 }
386 - },
387 - "version": "13.0.1+security-01"
409 + }
388 410 }
389 - }
390 - },
391 - "panel-3": {
392 - "kind": "Panel",
393 - "spec": {
394 - "data": {
395 - "kind": "QueryGroup",
396 - "spec": {
397 - "queries": [
398 - {
399 - "kind": "PanelQuery",
400 - "spec": {
401 - "hidden": false,
402 - "query": {
403 - "datasource": {
404 - "name": "afoiuzkkxju2of"
405 - },
406 - "group": "influxdb",
407 - "kind": "DataQuery",
408 - "spec": {
409 - "groupBy": [],
410 - "measurement": "samba_dsdb",
411 - "orderByTime": "ASC",
412 - "policy": "default",
413 - "query": "SELECT count(\"status_code\") FROM \"samba_dsdb\" WHERE $timeFilter GROUP BY time($interval), \"as_system\"::tag fill(null)",
414 - "rawQuery": true,
415 - "resultFormat": "time_series",
416 - "select": [],
417 - "tags": []
411 + },
412 + "panel-3": {
413 + "kind": "Panel",
414 + "spec": {
415 + "id": 3,
416 + "title": "DSDB: система vs пользователь",
417 + "description": "Изменения каталога с разбивкой по performedAsSystem (true = выполнено системой).",
418 + "links": [],
419 + "data": {
420 + "kind": "QueryGroup",
421 + "spec": {
422 + "queries": [
423 + {
424 + "kind": "PanelQuery",
425 + "spec": {
426 + "query": {
427 + "kind": "DataQuery",
428 + "group": "influxdb",
429 + "version": "v0",
430 + "datasource": {
431 + "name": "afoiuzkkxju2of"
432 + },
433 + "spec": {
434 + "groupBy": [],
435 + "measurement": "samba_dsdb",
436 + "orderByTime": "ASC",
437 + "policy": "default",
438 + "query": "SELECT count(\"status_code\") FROM \"samba_dsdb\" WHERE $timeFilter GROUP BY time($interval), \"as_system\"::tag fill(null)",
439 + "rawQuery": true,
440 + "resultFormat": "time_series",
441 + "select": [],
442 + "tags": []
443 + }
418 444 },
419 - "version": "v0"
420 - },
421 - "refId": "A"
445 + "refId": "A",
446 + "hidden": false
447 + }
422 448 }
423 - }
424 - ],
425 - "queryOptions": {},
426 - "transformations": []
427 - }
428 - },
429 - "description": "Изменения каталога с разбивкой по performedAsSystem (true = выполнено системой).",
430 - "id": 3,
431 - "links": [],
432 - "title": "DSDB: система vs пользователь",
433 - "vizConfig": {
434 - "group": "timeseries",
435 - "kind": "VizConfig",
436 - "spec": {
437 - "fieldConfig": {
438 - "defaults": {
439 - "color": {
440 - "mode": "palette-classic"
449 + ],
450 + "transformations": [],
451 + "queryOptions": {}
452 + }
453 + },
454 + "vizConfig": {
455 + "kind": "VizConfig",
456 + "group": "timeseries",
457 + "version": "13.0.1+security-01",
458 + "spec": {
459 + "options": {
460 + "annotations": {
461 + "clustering": -1,
462 + "multiLane": false
441 463 },
442 - "custom": {
443 - "axisBorderShow": false,
444 - "axisCenteredZero": false,
445 - "axisColorMode": "text",
446 - "axisLabel": "",
447 - "axisPlacement": "auto",
448 - "barAlignment": 0,
449 - "barWidthFactor": 0.6,
450 - "drawStyle": "line",
451 - "fillOpacity": 20,
452 - "gradientMode": "none",
453 - "hideFrom": {
454 - "legend": false,
455 - "tooltip": false,
456 - "viz": false
457 - },
458 - "insertNulls": false,
459 - "lineInterpolation": "smooth",
460 - "lineWidth": 1,
461 - "pointSize": 5,
462 - "scaleDistribution": {
463 - "type": "linear"
464 + "legend": {
465 + "calcs": [],
466 + "displayMode": "list",
467 + "placement": "bottom",
468 + "showLegend": true
469 + },
470 + "tooltip": {
471 + "hideZeros": false,
472 + "mode": "multi",
473 + "sort": "desc"
474 + }
475 + },
476 + "fieldConfig": {
477 + "defaults": {
478 + "thresholds": {
479 + "mode": "absolute",
480 + "steps": [
481 + {
482 + "value": 0,
483 + "color": "green"
484 + },
485 + {
486 + "value": 80,
487 + "color": "red"
488 + }
489 + ]
464 490 },
465 - "showPoints": "auto",
466 - "showValues": false,
467 - "spanNulls": false,
468 - "stacking": {
469 - "group": "A",
470 - "mode": "none"
491 + "color": {
492 + "mode": "palette-classic"
471 493 },
472 - "thresholdsStyle": {
473 - "mode": "off"
474 - }
475 - },
476 - "thresholds": {
477 - "mode": "absolute",
478 - "steps": [
479 - {
480 - "color": "green",
481 - "value": 0
494 + "custom": {
495 + "axisBorderShow": false,
496 + "axisCenteredZero": false,
497 + "axisColorMode": "text",
498 + "axisLabel": "",
499 + "axisPlacement": "auto",
500 + "barAlignment": 0,
501 + "barWidthFactor": 0.6,
502 + "drawStyle": "line",
503 + "fillOpacity": 20,
504 + "gradientMode": "none",
505 + "hideFrom": {
506 + "legend": false,
507 + "tooltip": false,
508 + "viz": false
509 + },
510 + "insertNulls": false,
511 + "lineInterpolation": "smooth",
512 + "lineWidth": 1,
513 + "pointSize": 5,
514 + "scaleDistribution": {
515 + "type": "linear"
516 + },
517 + "showPoints": "auto",
518 + "showValues": false,
519 + "spanNulls": false,
520 + "stacking": {
521 + "group": "A",
522 + "mode": "none"
482 523 },
483 - {
484 - "color": "red",
485 - "value": 80
524 + "thresholdsStyle": {
525 + "mode": "off"
486 526 }
487 - ]
488 - }
489 - },
490 - "overrides": []
491 - },
492 - "options": {
493 - "annotations": {
494 - "clustering": -1,
495 - "multiLane": false
496 - },
497 - "legend": {
498 - "calcs": [],
499 - "displayMode": "list",
500 - "placement": "bottom",
501 - "showLegend": true
502 - },
503 - "tooltip": {
504 - "hideZeros": false,
505 - "mode": "multi",
506 - "sort": "desc"
527 + }
528 + },
529 + "overrides": []
507 530 }
508 531 }
509 - },
510 - "version": "13.0.1+security-01"
532 + }
511 533 }
512 - }
513 - },
514 - "panel-4": {
515 - "kind": "Panel",
516 - "spec": {
517 - "data": {
518 - "kind": "QueryGroup",
519 - "spec": {
520 - "queries": [
521 - {
522 - "kind": "PanelQuery",
523 - "spec": {
524 - "hidden": false,
525 - "query": {
526 - "datasource": {
527 - "name": "afoiuzkkxju2of"
528 - },
529 - "group": "influxdb",
530 - "kind": "DataQuery",
531 - "spec": {
532 - "groupBy": [],
533 - "measurement": "samba_dsdb",
534 - "orderByTime": "ASC",
535 - "policy": "default",
536 - "query": "SELECT count(\"status_code\") FROM \"samba_dsdb\" WHERE $timeFilter GROUP BY time($interval), \"user_sid\"::tag fill(null)",
537 - "rawQuery": true,
538 - "resultFormat": "time_series",
539 - "select": [],
540 - "tags": []
534 + },
535 + "panel-4": {
536 + "kind": "Panel",
537 + "spec": {
538 + "id": 4,
539 + "title": "DSDB: топ инициаторов (SID)",
540 + "description": "Кто инициировал изменения каталога — разбивка по userSid.",
541 + "links": [],
542 + "data": {
543 + "kind": "QueryGroup",
544 + "spec": {
545 + "queries": [
546 + {
547 + "kind": "PanelQuery",
548 + "spec": {
549 + "query": {
550 + "kind": "DataQuery",
551 + "group": "influxdb",
552 + "version": "v0",
553 + "datasource": {
554 + "name": "afoiuzkkxju2of"
555 + },
556 + "spec": {
557 + "groupBy": [],
558 + "measurement": "samba_dsdb",
559 + "orderByTime": "ASC",
560 + "policy": "default",
561 + "query": "SELECT count(\"status_code\") FROM \"samba_dsdb\" WHERE $timeFilter GROUP BY time($interval), \"user_sid\"::tag fill(null)",
562 + "rawQuery": true,
563 + "resultFormat": "time_series",
564 + "select": [],
565 + "tags": []
566 + }
541 567 },
542 - "version": "v0"
543 - },
544 - "refId": "A"
568 + "refId": "A",
569 + "hidden": false
570 + }
545 571 }
546 - }
547 - ],
548 - "queryOptions": {},
549 - "transformations": []
550 - }
551 - },
552 - "description": "Кто инициировал изменения каталога — разбивка по userSid.",
553 - "id": 4,
554 - "links": [],
555 - "title": "DSDB: топ инициаторов (SID)",
556 - "vizConfig": {
557 - "group": "timeseries",
558 - "kind": "VizConfig",
559 - "spec": {
560 - "fieldConfig": {
561 - "defaults": {
562 - "color": {
563 - "mode": "palette-classic"
572 + ],
573 + "transformations": [],
574 + "queryOptions": {}
575 + }
576 + },
577 + "vizConfig": {
578 + "kind": "VizConfig",
579 + "group": "timeseries",
580 + "version": "13.0.1+security-01",
581 + "spec": {
582 + "options": {
583 + "annotations": {
584 + "clustering": -1,
585 + "multiLane": false
564 586 },
565 - "custom": {
566 - "axisBorderShow": false,
567 - "axisCenteredZero": false,
568 - "axisColorMode": "text",
569 - "axisLabel": "",
570 - "axisPlacement": "auto",
571 - "barAlignment": 0,
572 - "barWidthFactor": 0.6,
573 - "drawStyle": "bars",
574 - "fillOpacity": 50,
575 - "gradientMode": "none",
576 - "hideFrom": {
577 - "legend": false,
578 - "tooltip": false,
579 - "viz": false
580 - },
581 - "insertNulls": false,
582 - "lineInterpolation": "linear",
583 - "lineWidth": 1,
584 - "pointSize": 5,
585 - "scaleDistribution": {
586 - "type": "linear"
587 + "legend": {
588 + "calcs": [
589 + "sum"
590 + ],
591 + "displayMode": "table",
592 + "placement": "right",
593 + "showLegend": true
594 + },
595 + "tooltip": {
596 + "hideZeros": false,
597 + "mode": "multi",
598 + "sort": "desc"
599 + }
600 + },
601 + "fieldConfig": {
602 + "defaults": {
603 + "thresholds": {
604 + "mode": "absolute",
605 + "steps": [
606 + {
607 + "value": 0,
608 + "color": "green"
609 + },
610 + {
611 + "value": 80,
612 + "color": "red"
613 + }
614 + ]
587 615 },
588 - "showPoints": "auto",
589 - "showValues": false,
590 - "spanNulls": false,
591 - "stacking": {
592 - "group": "A",
593 - "mode": "normal"
616 + "color": {
617 + "mode": "palette-classic"
594 618 },
595 - "thresholdsStyle": {
596 - "mode": "off"
597 - }
598 - },
599 - "thresholds": {
600 - "mode": "absolute",
601 - "steps": [
602 - {
603 - "color": "green",
604 - "value": 0
619 + "custom": {
620 + "axisBorderShow": false,
621 + "axisCenteredZero": false,
622 + "axisColorMode": "text",
623 + "axisLabel": "",
624 + "axisPlacement": "auto",
625 + "barAlignment": 0,
626 + "barWidthFactor": 0.6,
627 + "drawStyle": "bars",
628 + "fillOpacity": 50,
629 + "gradientMode": "none",
630 + "hideFrom": {
631 + "legend": false,
632 + "tooltip": false,
633 + "viz": false
634 + },
635 + "insertNulls": false,
636 + "lineInterpolation": "linear",
637 + "lineWidth": 1,
638 + "pointSize": 5,
639 + "scaleDistribution": {
640 + "type": "linear"
605 641 },
606 - {
607 - "color": "red",
608 - "value": 80
642 + "showPoints": "auto",
643 + "showValues": false,
644 + "spanNulls": false,
645 + "stacking": {
646 + "group": "A",
647 + "mode": "normal"
648 + },
649 + "thresholdsStyle": {
650 + "mode": "off"
609 651 }
610 - ]
611 - }
612 - },
613 - "overrides": []
614 - },
615 - "options": {
616 - "annotations": {
617 - "clustering": -1,
618 - "multiLane": false
619 - },
620 - "legend": {
621 - "calcs": [
622 - "sum"
623 - ],
624 - "displayMode": "table",
625 - "placement": "right",
626 - "showLegend": true
627 - },
628 - "tooltip": {
629 - "hideZeros": false,
630 - "mode": "multi",
631 - "sort": "desc"
652 + }
653 + },
654 + "overrides": []
632 655 }
633 656 }
634 - },
635 - "version": "13.0.1+security-01"
657 + }
636 658 }
637 - }
638 - },
639 - "panel-5": {
640 - "kind": "Panel",
641 - "spec": {
642 - "data": {
643 - "kind": "QueryGroup",
644 - "spec": {
645 - "queries": [
646 - {
647 - "kind": "PanelQuery",
648 - "spec": {
649 - "hidden": false,
650 - "query": {
651 - "datasource": {
652 - "name": "afoiuzkkxju2of"
653 - },
654 - "group": "influxdb",
655 - "kind": "DataQuery",
656 - "spec": {
657 - "groupBy": [],
658 - "measurement": "samba_dsdb_tx",
659 - "orderByTime": "ASC",
660 - "policy": "default",
661 - "query": "SELECT mean(\"duration\") AS \"mean\", max(\"duration\") AS \"max\" FROM \"samba_dsdb_tx\" WHERE $timeFilter GROUP BY time($interval) fill(null)",
662 - "rawQuery": true,
663 - "resultFormat": "time_series",
664 - "select": [],
665 - "tags": []
659 + },
660 + "panel-5": {
661 + "kind": "Panel",
662 + "spec": {
663 + "id": 5,
664 + "title": "Транзакции: длительность (mean/max)",
665 + "description": "Длительность транзакций каталога (samba_dsdb_tx) в микросекундах.",
666 + "links": [],
667 + "data": {
668 + "kind": "QueryGroup",
669 + "spec": {
670 + "queries": [
671 + {
672 + "kind": "PanelQuery",
673 + "spec": {
674 + "query": {
675 + "kind": "DataQuery",
676 + "group": "influxdb",
677 + "version": "v0",
678 + "datasource": {
679 + "name": "afoiuzkkxju2of"
680 + },
681 + "spec": {
682 + "groupBy": [],
683 + "measurement": "samba_dsdb_tx",
684 + "orderByTime": "ASC",
685 + "policy": "default",
686 + "query": "SELECT mean(\"duration\") AS \"mean\", max(\"duration\") AS \"max\" FROM \"samba_dsdb_tx\" WHERE $timeFilter GROUP BY time($interval) fill(null)",
687 + "rawQuery": true,
688 + "resultFormat": "time_series",
689 + "select": [],
690 + "tags": []
691 + }
666 692 },
667 - "version": "v0"
668 - },
669 - "refId": "A"
693 + "refId": "A",
694 + "hidden": false
695 + }
670 696 }
671 - }
672 - ],
673 - "queryOptions": {},
674 - "transformations": []
675 - }
676 - },
677 - "description": "Длительность транзакций каталога (samba_dsdb_tx) в микросекундах.",
678 - "id": 5,
679 - "links": [],
680 - "title": "Транзакции: длительность (mean/max)",
681 - "vizConfig": {
682 - "group": "timeseries",
683 - "kind": "VizConfig",
684 - "spec": {
685 - "fieldConfig": {
686 - "defaults": {
687 - "color": {
688 - "mode": "palette-classic"
697 + ],
698 + "transformations": [],
699 + "queryOptions": {}
700 + }
701 + },
702 + "vizConfig": {
703 + "kind": "VizConfig",
704 + "group": "timeseries",
705 + "version": "13.0.1+security-01",
706 + "spec": {
707 + "options": {
708 + "annotations": {
709 + "clustering": -1,
710 + "multiLane": false
689 711 },
690 - "custom": {
691 - "axisBorderShow": false,
692 - "axisCenteredZero": false,
693 - "axisColorMode": "text",
694 - "axisLabel": "",
695 - "axisPlacement": "auto",
696 - "barAlignment": 0,
697 - "barWidthFactor": 0.6,
698 - "drawStyle": "line",
699 - "fillOpacity": 10,
700 - "gradientMode": "none",
701 - "hideFrom": {
702 - "legend": false,
703 - "tooltip": false,
704 - "viz": false
705 - },
706 - "insertNulls": false,
707 - "lineInterpolation": "smooth",
708 - "lineWidth": 1,
709 - "pointSize": 5,
710 - "scaleDistribution": {
711 - "type": "linear"
712 + "legend": {
713 + "calcs": [
714 + "mean",
715 + "max"
716 + ],
717 + "displayMode": "table",
718 + "placement": "bottom",
719 + "showLegend": true
720 + },
721 + "tooltip": {
722 + "hideZeros": false,
723 + "mode": "multi",
724 + "sort": "desc"
725 + }
726 + },
727 + "fieldConfig": {
728 + "defaults": {
729 + "unit": "µs",
730 + "thresholds": {
731 + "mode": "absolute",
732 + "steps": [
733 + {
734 + "value": 0,
735 + "color": "green"
736 + },
737 + {
738 + "value": 80,
739 + "color": "red"
740 + }
741 + ]
712 742 },
713 - "showPoints": "auto",
714 - "showValues": false,
715 - "spanNulls": false,
716 - "stacking": {
717 - "group": "A",
718 - "mode": "none"
743 + "color": {
744 + "mode": "palette-classic"
719 745 },
720 - "thresholdsStyle": {
721 - "mode": "off"
722 - }
723 - },
724 - "thresholds": {
725 - "mode": "absolute",
726 - "steps": [
727 - {
728 - "color": "green",
729 - "value": 0
746 + "custom": {
747 + "axisBorderShow": false,
748 + "axisCenteredZero": false,
749 + "axisColorMode": "text",
750 + "axisLabel": "",
751 + "axisPlacement": "auto",
752 + "barAlignment": 0,
753 + "barWidthFactor": 0.6,
754 + "drawStyle": "line",
755 + "fillOpacity": 10,
756 + "gradientMode": "none",
757 + "hideFrom": {
758 + "legend": false,
759 + "tooltip": false,
760 + "viz": false
730 761 },
731 - {
732 - "color": "red",
733 - "value": 80
762 + "insertNulls": false,
763 + "lineInterpolation": "smooth",
764 + "lineWidth": 1,
765 + "pointSize": 5,
766 + "scaleDistribution": {
767 + "type": "linear"
768 + },
769 + "showPoints": "auto",
770 + "showValues": false,
771 + "spanNulls": false,
772 + "stacking": {
773 + "group": "A",
774 + "mode": "none"
775 + },
776 + "thresholdsStyle": {
777 + "mode": "off"
734 778 }
735 - ]
779 + }
736 780 },
737 - "unit": "µs"
738 - },
739 - "overrides": []
740 - },
741 - "options": {
742 - "annotations": {
743 - "clustering": -1,
744 - "multiLane": false
745 - },
746 - "legend": {
747 - "calcs": [
748 - "mean",
749 - "max"
750 - ],
751 - "displayMode": "table",
752 - "placement": "bottom",
753 - "showLegend": true
754 - },
755 - "tooltip": {
756 - "hideZeros": false,
757 - "mode": "multi",
758 - "sort": "desc"
781 + "overrides": []
759 782 }
760 783 }
761 - },
762 - "version": "13.0.1+security-01"
784 + }
763 785 }
764 - }
765 - },
766 - "panel-6": {
767 - "kind": "Panel",
768 - "spec": {
769 - "data": {
770 - "kind": "QueryGroup",
771 - "spec": {
772 - "queries": [
773 - {
774 - "kind": "PanelQuery",
775 - "spec": {
776 - "hidden": false,
777 - "query": {
778 - "datasource": {
779 - "name": "afoiuzkkxju2of"
780 - },
781 - "group": "influxdb",
782 - "kind": "DataQuery",
783 - "spec": {
784 - "groupBy": [],
785 - "measurement": "samba_dsdb_tx",
786 - "orderByTime": "ASC",
787 - "policy": "default",
788 - "query": "SELECT count(\"duration\") FROM \"samba_dsdb_tx\" WHERE $timeFilter GROUP BY time($interval), \"action\"::tag fill(null)",
789 - "rawQuery": true,
790 - "resultFormat": "time_series",
791 - "select": [],
792 - "tags": []
786 + },
787 + "panel-6": {
788 + "kind": "Panel",
789 + "spec": {
790 + "id": 6,
791 + "title": "Транзакции по типу действия",
792 + "description": "Число транзакций каталога, разбивка по action (commit / rollback / prepare commit / begin).",
793 + "links": [],
794 + "data": {
795 + "kind": "QueryGroup",
796 + "spec": {
797 + "queries": [
798 + {
799 + "kind": "PanelQuery",
800 + "spec": {
801 + "query": {
802 + "kind": "DataQuery",
803 + "group": "influxdb",
804 + "version": "v0",
805 + "datasource": {
806 + "name": "afoiuzkkxju2of"
807 + },
808 + "spec": {
809 + "groupBy": [],
810 + "measurement": "samba_dsdb_tx",
811 + "orderByTime": "ASC",
812 + "policy": "default",
813 + "query": "SELECT count(\"duration\") FROM \"samba_dsdb_tx\" WHERE $timeFilter GROUP BY time($interval), \"action\"::tag fill(null)",
814 + "rawQuery": true,
815 + "resultFormat": "time_series",
816 + "select": [],
817 + "tags": []
818 + }
793 819 },
794 - "version": "v0"
795 - },
796 - "refId": "A"
820 + "refId": "A",
821 + "hidden": false
822 + }
797 823 }
798 - }
799 - ],
800 - "queryOptions": {},
801 - "transformations": []
802 - }
803 - },
804 - "description": "Число транзакций каталога, разбивка по action (commit / rollback / prepare commit / begin).",
805 - "id": 6,
806 - "links": [],
807 - "title": "Транзакции по типу действия",
808 - "vizConfig": {
809 - "group": "timeseries",
810 - "kind": "VizConfig",
811 - "spec": {
812 - "fieldConfig": {
813 - "defaults": {
814 - "color": {
815 - "mode": "palette-classic"
824 + ],
825 + "transformations": [],
826 + "queryOptions": {}
827 + }
828 + },
829 + "vizConfig": {
830 + "kind": "VizConfig",
831 + "group": "timeseries",
832 + "version": "13.0.1+security-01",
833 + "spec": {
834 + "options": {
835 + "annotations": {
836 + "clustering": -1,
837 + "multiLane": false
816 838 },
817 - "custom": {
818 - "axisBorderShow": false,
819 - "axisCenteredZero": false,
820 - "axisColorMode": "text",
821 - "axisLabel": "",
822 - "axisPlacement": "auto",
823 - "barAlignment": 0,
824 - "barWidthFactor": 0.6,
825 - "drawStyle": "bars",
826 - "fillOpacity": 50,
827 - "gradientMode": "none",
828 - "hideFrom": {
829 - "legend": false,
830 - "tooltip": false,
831 - "viz": false
832 - },
833 - "insertNulls": false,
834 - "lineInterpolation": "linear",
835 - "lineWidth": 1,
836 - "pointSize": 5,
837 - "scaleDistribution": {
838 - "type": "linear"
839 + "legend": {
840 + "calcs": [],
841 + "displayMode": "list",
842 + "placement": "bottom",
843 + "showLegend": true
844 + },
845 + "tooltip": {
846 + "hideZeros": false,
847 + "mode": "multi",
848 + "sort": "desc"
849 + }
850 + },
851 + "fieldConfig": {
852 + "defaults": {
853 + "thresholds": {
854 + "mode": "absolute",
855 + "steps": [
856 + {
857 + "value": 0,
858 + "color": "green"
859 + },
860 + {
861 + "value": 80,
862 + "color": "red"
863 + }
864 + ]
839 865 },
840 - "showPoints": "auto",
841 - "showValues": false,
842 - "spanNulls": false,
843 - "stacking": {
844 - "group": "A",
845 - "mode": "normal"
866 + "color": {
867 + "mode": "palette-classic"
846 868 },
847 - "thresholdsStyle": {
848 - "mode": "off"
849 - }
850 - },
851 - "thresholds": {
852 - "mode": "absolute",
853 - "steps": [
854 - {
855 - "color": "green",
856 - "value": 0
869 + "custom": {
870 + "axisBorderShow": false,
871 + "axisCenteredZero": false,
872 + "axisColorMode": "text",
873 + "axisLabel": "",
874 + "axisPlacement": "auto",
875 + "barAlignment": 0,
876 + "barWidthFactor": 0.6,
877 + "drawStyle": "bars",
878 + "fillOpacity": 50,
879 + "gradientMode": "none",
880 + "hideFrom": {
881 + "legend": false,
882 + "tooltip": false,
883 + "viz": false
884 + },
885 + "insertNulls": false,
886 + "lineInterpolation": "linear",
887 + "lineWidth": 1,
888 + "pointSize": 5,
889 + "scaleDistribution": {
890 + "type": "linear"
857 891 },
858 - {
859 - "color": "red",
860 - "value": 80
892 + "showPoints": "auto",
893 + "showValues": false,
894 + "spanNulls": false,
895 + "stacking": {
896 + "group": "A",
897 + "mode": "normal"
898 + },
899 + "thresholdsStyle": {
900 + "mode": "off"
861 901 }
862 - ]
863 - }
864 - },
865 - "overrides": []
866 - },
867 - "options": {
868 - "annotations": {
869 - "clustering": -1,
870 - "multiLane": false
871 - },
872 - "legend": {
873 - "calcs": [],
874 - "displayMode": "list",
875 - "placement": "bottom",
876 - "showLegend": true
877 - },
878 - "tooltip": {
879 - "hideZeros": false,
880 - "mode": "multi",
881 - "sort": "desc"
902 + }
903 + },
904 + "overrides": []
882 905 }
883 906 }
884 - },
885 - "version": "13.0.1+security-01"
907 + }
886 908 }
887 - }
888 - },
889 - "panel-7": {
890 - "kind": "Panel",
891 - "spec": {
892 - "data": {
893 - "kind": "QueryGroup",
894 - "spec": {
895 - "queries": [
896 - {
897 - "kind": "PanelQuery",
898 - "spec": {
899 - "hidden": false,
900 - "query": {
901 - "datasource": {
902 - "name": "afoiuzkkxju2of"
903 - },
904 - "group": "influxdb",
905 - "kind": "DataQuery",
906 - "spec": {
907 - "alias": "user_smb",
908 - "groupBy": [
909 - {
910 - "params": [
911 - "$interval"
912 - ],
913 - "type": "time"
914 - },
915 - {
916 - "params": [
917 - "domain::tag"
918 - ],
919 - "type": "tag"
920 - },
921 - {
922 - "params": [
923 - "null"
924 - ],
925 - "type": "fill"
926 - }
927 - ],
928 - "measurement": "samba_authz",
929 - "orderByTime": "ASC",
930 - "policy": "default",
931 - "query": "SELECT count(\"client_account\") FROM \"samba_auth\" WHERE (\"status\"::tag = 'NT_STATUS_OK' AND \"account\"::tag =~ /^MACHINE/) AND $timeFilter GROUP BY time($interval), \"domain\"::tag fill(null)",
932 - "rawQuery": false,
933 - "resultFormat": "time_series",
934 - "select": [
935 - [
909 + },
910 + "panel-7": {
911 + "kind": "Panel",
912 + "spec": {
913 + "id": 7,
914 + "title": "SMB activity",
915 + "description": "",
916 + "links": [],
917 + "data": {
918 + "kind": "QueryGroup",
919 + "spec": {
920 + "queries": [
921 + {
922 + "kind": "PanelQuery",
923 + "spec": {
924 + "query": {
925 + "kind": "DataQuery",
926 + "group": "influxdb",
927 + "version": "v0",
928 + "datasource": {
929 + "name": "afoiuzkkxju2of"
930 + },
931 + "spec": {
932 + "alias": "user_smb",
933 + "groupBy": [
936 934 {
937 935 "params": [
938 - "auth_type"
936 + "$interval"
939 937 ],
940 - "type": "field"
938 + "type": "time"
939 + },
940 + {
941 + "params": [
942 + "domain::tag"
943 + ],
944 + "type": "tag"
945 + },
946 + {
947 + "params": [
948 + "null"
949 + ],
950 + "type": "fill"
951 + }
952 + ],
953 + "measurement": "samba_authz",
954 + "orderByTime": "ASC",
955 + "policy": "default",
956 + "query": "SELECT count(\"client_account\") FROM \"samba_auth\" WHERE (\"status\"::tag = 'NT_STATUS_OK' AND \"account\"::tag =~ /^MACHINE/) AND $timeFilter GROUP BY time($interval), \"domain\"::tag fill(null)",
957 + "rawQuery": false,
958 + "resultFormat": "time_series",
959 + "select": [
960 + [
961 + {
962 + "params": [
963 + "auth_type"
964 + ],
965 + "type": "field"
966 + },
967 + {
968 + "params": [],
969 + "type": "count"
970 + }
971 + ]
972 + ],
973 + "tags": [
974 + {
975 + "key": "service::tag",
976 + "operator": "=",
977 + "value": "SMB2"
978 + },
979 + {
980 + "condition": "AND",
981 + "key": "auth_type::field",
982 + "operator": "=",
983 + "value": "krb5"
941 984 },
942 985 {
943 - "params": [],
944 - "type": "count"
986 + "condition": "AND",
987 + "key": "account::tag",
988 + "operator": "=~",
989 + "value": "/^user-/"
945 990 }
946 991 ]
947 - ],
948 - "tags": [
949 - {
950 - "key": "service::tag",
951 - "operator": "=",
952 - "value": "SMB2"
953 - },
954 - {
955 - "condition": "AND",
956 - "key": "auth_type::field",
957 - "operator": "=",
958 - "value": "krb5"
959 - },
960 - {
961 - "condition": "AND",
962 - "key": "account::tag",
963 - "operator": "=~",
964 - "value": "/^user-/"
965 - }
966 - ]
967 - },
968 - "version": "v0"
969 - },
970 - "refId": "A"
971 - }
972 - },
973 - {
974 - "kind": "PanelQuery",
975 - "spec": {
976 - "hidden": false,
977 - "query": {
978 - "datasource": {
979 - "name": "afoiuzkkxju2of"
992 + }
980 993 },
981 - "group": "influxdb",
982 - "kind": "DataQuery",
983 - "spec": {
984 - "alias": "machine_smb",
985 - "groupBy": [
986 - {
987 - "params": [
988 - "$interval"
989 - ],
990 - "type": "time"
991 - },
992 - {
993 - "params": [
994 - "domain::tag"
995 - ],
996 - "type": "tag"
997 - },
998 - {
999 - "params": [
1000 - "null"
1001 - ],
1002 - "type": "fill"
1003 - }
1004 - ],
1005 - "measurement": "samba_authz",
1006 - "orderByTime": "ASC",
1007 - "policy": "default",
1008 - "query": "SELECT count(\"client_account\") FROM \"samba_auth\" WHERE (\"status\"::tag = 'NT_STATUS_OK' AND \"account\"::tag =~ /^MACHINE/) AND $timeFilter GROUP BY time($interval), \"domain\"::tag fill(null)",
1009 - "rawQuery": false,
1010 - "resultFormat": "time_series",
1011 - "select": [
1012 - [
994 + "refId": "A",
995 + "hidden": false
996 + }
997 + },
998 + {
999 + "kind": "PanelQuery",
1000 + "spec": {
1001 + "query": {
1002 + "kind": "DataQuery",
1003 + "group": "influxdb",
1004 + "version": "v0",
1005 + "datasource": {
1006 + "name": "afoiuzkkxju2of"
1007 + },
1008 + "spec": {
1009 + "alias": "machine_smb",
1010 + "groupBy": [
1011 + {
1012 + "params": [
1013 + "$interval"
1014 + ],
1015 + "type": "time"
1016 + },
1013 1017 {
1014 1018 "params": [
1015 - "auth_type"
1019 + "domain::tag"
1016 1020 ],
1017 - "type": "field"
1021 + "type": "tag"
1018 1022 },
1019 1023 {
1020 - "params": [],
1021 - "type": "count"
1024 + "params": [
1025 + "null"
1026 + ],
1027 + "type": "fill"
1028 + }
1029 + ],
1030 + "measurement": "samba_authz",
1031 + "orderByTime": "ASC",
1032 + "policy": "default",
1033 + "query": "SELECT count(\"client_account\") FROM \"samba_auth\" WHERE (\"status\"::tag = 'NT_STATUS_OK' AND \"account\"::tag =~ /^MACHINE/) AND $timeFilter GROUP BY time($interval), \"domain\"::tag fill(null)",
1034 + "rawQuery": false,
1035 + "resultFormat": "time_series",
1036 + "select": [
1037 + [
1038 + {
1039 + "params": [
1040 + "auth_type"
1041 + ],
1042 + "type": "field"
1043 + },
1044 + {
1045 + "params": [],
1046 + "type": "count"
1047 + }
1048 + ]
1049 + ],
1050 + "tags": [
1051 + {
1052 + "key": "service::tag",
1053 + "operator": "=",
1054 + "value": "SMB2"
1055 + },
1056 + {
1057 + "condition": "AND",
1058 + "key": "auth_type::field",
1059 + "operator": "=",
1060 + "value": "krb5"
1061 + },
1062 + {
1063 + "condition": "AND",
1064 + "key": "account::tag",
1065 + "operator": "=~",
1066 + "value": "/^MACHINE/"
1022 1067 }
1023 1068 ]
1024 - ],
1025 - "tags": [
1026 - {
1027 - "key": "service::tag",
1028 - "operator": "=",
1029 - "value": "SMB2"
1030 - },
1031 - {
1032 - "condition": "AND",
1033 - "key": "auth_type::field",
1034 - "operator": "=",
1035 - "value": "krb5"
1036 - },
1037 - {
1038 - "condition": "AND",
1039 - "key": "account::tag",
1040 - "operator": "=~",
1041 - "value": "/^MACHINE/"
1042 - }
1043 - ]
1069 + }
1044 1070 },
1045 - "version": "v0"
1046 - },
1047 - "refId": "B"
1071 + "refId": "B",
1072 + "hidden": false
1073 + }
1048 1074 }
1049 - }
1050 - ],
1051 - "queryOptions": {},
1052 - "transformations": []
1053 - }
1054 - },
1055 - "description": "",
1056 - "id": 7,
1057 - "links": [],
1058 - "title": "SMB activity",
1059 - "vizConfig": {
1060 - "group": "timeseries",
1061 - "kind": "VizConfig",
1062 - "spec": {
1063 - "fieldConfig": {
1064 - "defaults": {
1065 - "color": {
1066 - "mode": "palette-classic"
1075 + ],
1076 + "transformations": [],
1077 + "queryOptions": {}
1078 + }
1079 + },
1080 + "vizConfig": {
1081 + "kind": "VizConfig",
1082 + "group": "timeseries",
1083 + "version": "13.0.1+security-01",
1084 + "spec": {
1085 + "options": {
1086 + "annotations": {
1087 + "clustering": -1,
1088 + "multiLane": false
1067 1089 },
1068 - "custom": {
1069 - "axisBorderShow": false,
1070 - "axisCenteredZero": false,
1071 - "axisColorMode": "text",
1072 - "axisLabel": "",
1073 - "axisPlacement": "auto",
1074 - "barAlignment": 0,
1075 - "barWidthFactor": 0.6,
1076 - "drawStyle": "line",
1077 - "fillOpacity": 10,
1078 - "gradientMode": "none",
1079 - "hideFrom": {
1080 - "legend": false,
1081 - "tooltip": false,
1082 - "viz": false
1083 - },
1084 - "insertNulls": false,
1085 - "lineInterpolation": "smooth",
1086 - "lineWidth": 1,
1087 - "pointSize": 5,
1088 - "scaleDistribution": {
1089 - "type": "linear"
1090 + "legend": {
1091 + "calcs": [],
1092 + "displayMode": "list",
1093 + "placement": "bottom",
1094 + "showLegend": true
1095 + },
1096 + "tooltip": {
1097 + "hideZeros": false,
1098 + "mode": "single",
1099 + "sort": "none"
1100 + }
1101 + },
1102 + "fieldConfig": {
1103 + "defaults": {
1104 + "thresholds": {
1105 + "mode": "absolute",
1106 + "steps": [
1107 + {
1108 + "value": 0,
1109 + "color": "green"
1110 + },
1111 + {
1112 + "value": 80,
1113 + "color": "red"
1114 + }
1115 + ]
1090 1116 },
1091 - "showPoints": "auto",
1092 - "showValues": false,
1093 - "spanNulls": false,
1094 - "stacking": {
1095 - "group": "A",
1096 - "mode": "none"
1117 + "color": {
1118 + "mode": "palette-classic"
1097 1119 },
1098 - "thresholdsStyle": {
1099 - "mode": "off"
1100 - }
1101 - },
1102 - "thresholds": {
1103 - "mode": "absolute",
1104 - "steps": [
1105 - {
1106 - "color": "green",
1107 - "value": 0
1120 + "custom": {
1121 + "axisBorderShow": false,
1122 + "axisCenteredZero": false,
1123 + "axisColorMode": "text",
1124 + "axisLabel": "",
1125 + "axisPlacement": "auto",
1126 + "barAlignment": 0,
1127 + "barWidthFactor": 0.6,
1128 + "drawStyle": "line",
1129 + "fillOpacity": 10,
1130 + "gradientMode": "none",
1131 + "hideFrom": {
1132 + "legend": false,
1133 + "tooltip": false,
1134 + "viz": false
1135 + },
1136 + "insertNulls": false,
1137 + "lineInterpolation": "smooth",
1138 + "lineWidth": 1,
1139 + "pointSize": 5,
1140 + "scaleDistribution": {
1141 + "type": "linear"
1108 1142 },
1109 - {
1110 - "color": "red",
1111 - "value": 80
1143 + "showPoints": "auto",
1144 + "showValues": false,
1145 + "spanNulls": false,
1146 + "stacking": {
1147 + "group": "A",
1148 + "mode": "none"
1149 + },
1150 + "thresholdsStyle": {
1151 + "mode": "off"
1112 1152 }
1113 - ]
1114 - }
1115 - },
1116 - "overrides": []
1117 - },
1118 - "options": {
1119 - "annotations": {
1120 - "clustering": -1,
1121 - "multiLane": false
1122 - },
1123 - "legend": {
1124 - "calcs": [],
1125 - "displayMode": "list",
1126 - "placement": "bottom",
1127 - "showLegend": true
1128 - },
1129 - "tooltip": {
1130 - "hideZeros": false,
1131 - "mode": "single",
1132 - "sort": "none"
1153 + }
1154 + },
1155 + "overrides": []
1133 1156 }
1134 1157 }
1135 - },
1136 - "version": "13.0.1+security-01"
1158 + }
1137 1159 }
1138 - }
1139 - },
1140 - "panel-8": {
1141 - "kind": "Panel",
1142 - "spec": {
1143 - "data": {
1144 - "kind": "QueryGroup",
1145 - "spec": {
1146 - "queries": [
1147 - {
1148 - "kind": "PanelQuery",
1149 - "spec": {
1150 - "hidden": false,
1151 - "query": {
1152 - "datasource": {
1153 - "name": "afoiuzkkxju2of"
1154 - },
1155 - "group": "influxdb",
1156 - "kind": "DataQuery",
1157 - "spec": {
1158 - "alias": "rcode=0",
1159 - "groupBy": [
1160 - {
1161 - "params": [
1162 - "$interval"
1163 - ],
1164 - "type": "time"
1165 - },
1166 - {
1167 - "params": [
1168 - "null"
1169 - ],
1170 - "type": "fill"
1171 - }
1172 - ],
1173 - "measurement": "samba_dns_rcode",
1174 - "orderByTime": "ASC",
1175 - "policy": "default",
1176 - "query": "SELECT count(\"client_account\") FROM \"samba_auth\" WHERE (\"status\"::tag = 'NT_STATUS_OK' AND \"account\"::tag =~ /^MACHINE/) AND $timeFilter GROUP BY time($interval), \"domain\"::tag fill(null)",
1177 - "rawQuery": false,
1178 - "resultFormat": "time_series",
1179 - "select": [
1180 - [
1160 + },
1161 + "panel-8": {
1162 + "kind": "Panel",
1163 + "spec": {
1164 + "id": 8,
1165 + "title": "DNS activity",
1166 + "description": "",
1167 + "links": [],
1168 + "data": {
1169 + "kind": "QueryGroup",
1170 + "spec": {
1171 + "queries": [
1172 + {
1173 + "kind": "PanelQuery",
1174 + "spec": {
1175 + "query": {
1176 + "kind": "DataQuery",
1177 + "group": "influxdb",
1178 + "version": "v0",
1179 + "datasource": {
1180 + "name": "afoiuzkkxju2of"
1181 + },
1182 + "spec": {
1183 + "alias": "rcode=0",
1184 + "groupBy": [
1181 1185 {
1182 1186 "params": [
1183 - "rcode"
1187 + "$interval"
1184 1188 ],
1185 - "type": "field"
1189 + "type": "time"
1186 1190 },
1187 1191 {
1188 - "params": [],
1189 - "type": "count"
1192 + "params": [
1193 + "null"
1194 + ],
1195 + "type": "fill"
1196 + }
1197 + ],
1198 + "measurement": "samba_dns_rcode",
1199 + "orderByTime": "ASC",
1200 + "policy": "default",
1201 + "query": "SELECT count(\"client_account\") FROM \"samba_auth\" WHERE (\"status\"::tag = 'NT_STATUS_OK' AND \"account\"::tag =~ /^MACHINE/) AND $timeFilter GROUP BY time($interval), \"domain\"::tag fill(null)",
1202 + "rawQuery": false,
1203 + "resultFormat": "time_series",
1204 + "select": [
1205 + [
1206 + {
1207 + "params": [
1208 + "rcode"
1209 + ],
1210 + "type": "field"
1211 + },
1212 + {
1213 + "params": [],
1214 + "type": "count"
1215 + }
1216 + ]
1217 + ],
1218 + "tags": [
1219 + {
1220 + "key": "rcode::field",
1221 + "operator": "=",
1222 + "value": "0"
1190 1223 }
1191 1224 ]
1192 - ],
1193 - "tags": [
1194 - {
1195 - "key": "rcode::field",
1196 - "operator": "=",
1197 - "value": "0"
1198 - }
1199 - ]
1200 - },
1201 - "version": "v0"
1202 - },
1203 - "refId": "A"
1204 - }
1205 - },
1206 - {
1207 - "kind": "PanelQuery",
1208 - "spec": {
1209 - "hidden": false,
1210 - "query": {
1211 - "datasource": {
1212 - "name": "afoiuzkkxju2of"
1225 + }
1213 1226 },
1214 - "group": "influxdb",
1215 - "kind": "DataQuery",
1216 - "spec": {
1217 - "alias": "rcode=3",
1218 - "groupBy": [
1219 - {
1220 - "params": [
1221 - "$interval"
1222 - ],
1223 - "type": "time"
1224 - },
1225 - {
1226 - "params": [
1227 - "null"
1228 - ],
1229 - "type": "fill"
1230 - }
1231 - ],
1232 - "measurement": "samba_dns_rcode",
1233 - "orderByTime": "ASC",
1234 - "policy": "default",
1235 - "query": "SELECT count(\"client_account\") FROM \"samba_auth\" WHERE (\"status\"::tag = 'NT_STATUS_OK' AND \"account\"::tag =~ /^MACHINE/) AND $timeFilter GROUP BY time($interval), \"domain\"::tag fill(null)",
1236 - "rawQuery": false,
1237 - "resultFormat": "time_series",
1238 - "select": [
1239 - [
1227 + "refId": "A",
1228 + "hidden": false
1229 + }
1230 + },
1231 + {
1232 + "kind": "PanelQuery",
1233 + "spec": {
1234 + "query": {
1235 + "kind": "DataQuery",
1236 + "group": "influxdb",
1237 + "version": "v0",
1238 + "datasource": {
1239 + "name": "afoiuzkkxju2of"
1240 + },
1241 + "spec": {
1242 + "alias": "rcode=3",
1243 + "groupBy": [
1240 1244 {
1241 1245 "params": [
1242 - "rcode"
1246 + "$interval"
1243 1247 ],
1244 - "type": "field"
1248 + "type": "time"
1245 1249 },
1246 1250 {
1247 - "params": [],
1248 - "type": "count"
1251 + "params": [
1252 + "null"
1253 + ],
1254 + "type": "fill"
1255 + }
1256 + ],
1257 + "measurement": "samba_dns_rcode",
1258 + "orderByTime": "ASC",
1259 + "policy": "default",
1260 + "query": "SELECT count(\"client_account\") FROM \"samba_auth\" WHERE (\"status\"::tag = 'NT_STATUS_OK' AND \"account\"::tag =~ /^MACHINE/) AND $timeFilter GROUP BY time($interval), \"domain\"::tag fill(null)",
1261 + "rawQuery": false,
1262 + "resultFormat": "time_series",
1263 + "select": [
1264 + [
1265 + {
1266 + "params": [
1267 + "rcode"
1268 + ],
1269 + "type": "field"
1270 + },
1271 + {
1272 + "params": [],
1273 + "type": "count"
1274 + }
1275 + ]
1276 + ],
1277 + "tags": [
1278 + {
1279 + "key": "rcode::field",
1280 + "operator": "=",
1281 + "value": "3"
1249 1282 }
1250 1283 ]
1251 - ],
1252 - "tags": [
1253 - {
1254 - "key": "rcode::field",
1255 - "operator": "=",
1256 - "value": "3"
1257 - }
1258 - ]
1284 + }
1259 1285 },
1260 - "version": "v0"
1261 - },
1262 - "refId": "B"
1286 + "refId": "B",
1287 + "hidden": false
1288 + }
1263 1289 }
1264 - }
1265 - ],
1266 - "queryOptions": {},
1267 - "transformations": []
1268 - }
1269 - },
1270 - "description": "",
1271 - "id": 8,
1272 - "links": [],
1273 - "title": "DNS activity",
1274 - "vizConfig": {
1275 - "group": "timeseries",
1276 - "kind": "VizConfig",
1277 - "spec": {
1278 - "fieldConfig": {
1279 - "defaults": {
1280 - "color": {
1281 - "mode": "palette-classic"
1290 + ],
1291 + "transformations": [],
1292 + "queryOptions": {}
1293 + }
1294 + },
1295 + "vizConfig": {
1296 + "kind": "VizConfig",
1297 + "group": "timeseries",
1298 + "version": "13.0.1+security-01",
1299 + "spec": {
1300 + "options": {
1301 + "annotations": {
1302 + "clustering": -1,
1303 + "multiLane": false
1282 1304 },
1283 - "custom": {
1284 - "axisBorderShow": false,
1285 - "axisCenteredZero": false,
1286 - "axisColorMode": "text",
1287 - "axisLabel": "",
1288 - "axisPlacement": "auto",
1289 - "barAlignment": 0,
1290 - "barWidthFactor": 0.6,
1291 - "drawStyle": "line",
1292 - "fillOpacity": 10,
1293 - "gradientMode": "none",
1294 - "hideFrom": {
1295 - "legend": false,
1296 - "tooltip": false,
1297 - "viz": false
1298 - },
1299 - "insertNulls": false,
1300 - "lineInterpolation": "smooth",
1301 - "lineWidth": 1,
1302 - "pointSize": 5,
1303 - "scaleDistribution": {
1304 - "type": "linear"
1305 + "legend": {
1306 + "calcs": [],
1307 + "displayMode": "list",
1308 + "placement": "bottom",
1309 + "showLegend": true
1310 + },
1311 + "tooltip": {
1312 + "hideZeros": false,
1313 + "mode": "single",
1314 + "sort": "none"
1315 + }
1316 + },
1317 + "fieldConfig": {
1318 + "defaults": {
1319 + "thresholds": {
1320 + "mode": "absolute",
1321 + "steps": [
1322 + {
1323 + "value": 0,
1324 + "color": "green"
1325 + },
1326 + {
1327 + "value": 80,
1328 + "color": "red"
1329 + }
1330 + ]
1305 1331 },
1306 - "showPoints": "auto",
1307 - "showValues": false,
1308 - "spanNulls": false,
1309 - "stacking": {
1310 - "group": "A",
1311 - "mode": "none"
1332 + "color": {
1333 + "mode": "palette-classic"
1312 1334 },
1313 - "thresholdsStyle": {
1314 - "mode": "off"
1315 - }
1316 - },
1317 - "thresholds": {
1318 - "mode": "absolute",
1319 - "steps": [
1320 - {
1321 - "color": "green",
1322 - "value": 0
1335 + "custom": {
1336 + "axisBorderShow": false,
1337 + "axisCenteredZero": false,
1338 + "axisColorMode": "text",
1339 + "axisLabel": "",
1340 + "axisPlacement": "auto",
1341 + "barAlignment": 0,
1342 + "barWidthFactor": 0.6,
1343 + "drawStyle": "line",
1344 + "fillOpacity": 10,
1345 + "gradientMode": "none",
1346 + "hideFrom": {
1347 + "legend": false,
1348 + "tooltip": false,
1349 + "viz": false
1323 1350 },
1324 - {
1325 - "color": "red",
1326 - "value": 80
1351 + "insertNulls": false,
1352 + "lineInterpolation": "smooth",
1353 + "lineWidth": 1,
1354 + "pointSize": 5,
1355 + "scaleDistribution": {
1356 + "type": "linear"
1357 + },
1358 + "showPoints": "auto",
1359 + "showValues": false,
1360 + "spanNulls": false,
1361 + "stacking": {
1362 + "group": "A",
1363 + "mode": "none"
1364 + },
1365 + "thresholdsStyle": {
1366 + "mode": "off"
1327 1367 }
1328 - ]
1329 - }
1330 - },
1331 - "overrides": []
1332 - },
1333 - "options": {
1334 - "annotations": {
1335 - "clustering": -1,
1336 - "multiLane": false
1337 - },
1338 - "legend": {
1339 - "calcs": [],
1340 - "displayMode": "list",
1341 - "placement": "bottom",
1342 - "showLegend": true
1343 - },
1344 - "tooltip": {
1345 - "hideZeros": false,
1346 - "mode": "single",
1347 - "sort": "none"
1368 + }
1369 + },
1370 + "overrides": []
1348 1371 }
1349 1372 }
1350 - },
1351 - "version": "13.0.1+security-01"
1352 - }
1353 - }
1354 - }
1355 - },
1356 - "layout": {
1357 - "kind": "GridLayout",
1358 - "spec": {
1359 - "items": [
1360 - {
1361 - "kind": "GridLayoutItem",
1362 - "spec": {
1363 - "element": {
1364 - "kind": "ElementReference",
1365 - "name": "panel-1"
1366 - },
1367 - "height": 8,
1368 - "width": 24,
1369 - "x": 0,
1370 - "y": 0
1371 - }
1372 - },
1373 - {
1374 - "kind": "GridLayoutItem",
1375 - "spec": {
1376 - "element": {
1377 - "kind": "ElementReference",
1378 - "name": "panel-7"
1379 - },
1380 - "height": 7,
1381 - "width": 24,
1382 - "x": 0,
1383 - "y": 8
1384 - }
1385 - },
1386 - {
1387 - "kind": "GridLayoutItem",
1388 - "spec": {
1389 - "element": {
1390 - "kind": "ElementReference",
1391 - "name": "panel-8"
1392 - },
1393 - "height": 7,
1394 - "width": 24,
1395 - "x": 0,
1396 - "y": 15
1397 - }
1398 - },
1399 - {
1400 - "kind": "GridLayoutItem",
1401 - "spec": {
1402 - "element": {
1403 - "kind": "ElementReference",
1404 - "name": "panel-2"
1405 - },
1406 - "height": 8,
1407 - "width": 12,
1408 - "x": 0,
1409 - "y": 22
1410 - }
1411 - },
1412 - {
1413 - "kind": "GridLayoutItem",
1414 - "spec": {
1415 - "element": {
1416 - "kind": "ElementReference",
1417 - "name": "panel-3"
1418 - },
1419 - "height": 8,
1420 - "width": 12,
1421 - "x": 12,
1422 - "y": 22
1423 - }
1424 - },
1425 - {
1426 - "kind": "GridLayoutItem",
1427 - "spec": {
1428 - "element": {
1429 - "kind": "ElementReference",
1430 - "name": "panel-4"
1431 - },
1432 - "height": 8,
1433 - "width": 12,
1434 - "x": 0,
1435 - "y": 30
1436 - }
1437 - },
1438 - {
1439 - "kind": "GridLayoutItem",
1440 - "spec": {
1441 - "element": {
1442 - "kind": "ElementReference",
1443 - "name": "panel-5"
1444 - },
1445 - "height": 8,
1446 - "width": 12,
1447 - "x": 12,
1448 - "y": 30
1449 - }
1450 - },
1451 - {
1452 - "kind": "GridLayoutItem",
1453 - "spec": {
1454 - "element": {
1455 - "kind": "ElementReference",
1456 - "name": "panel-6"
1457 - },
1458 - "height": 8,
1459 - "width": 12,
1460 - "x": 0,
1461 - "y": 38
1462 1373 }
1463 1374 }
1464 - ]
1465 - }
1466 - },
1467 - "links": [],
1468 - "liveNow": false,
1469 - "preferences": {
1375 + }
1376 + },
1470 1377 "layout": {
1471 1378 "kind": "GridLayout",
1472 1379 "spec": {
1473 - "items": []
1474 - }
1475 - }
1476 - },
1477 - "preload": false,
1478 - "tags": [
1479 - "samba",
1480 - "ad",
1481 - "audit"
1482 - ],
1483 - "timeSettings": {
1484 - "autoRefresh": "5s",
1485 - "autoRefreshIntervals": [
1486 - "5s",
1487 - "10s",
1488 - "30s",
1489 - "1m",
1490 - "5m",
1491 - "15m",
1492 - "30m",
1493 - "1h",
1494 - "2h",
1495 - "1d"
1496 - ],
1497 - "fiscalYearStartMonth": 0,
1498 - "from": "now-15m",
1499 - "hideTimepicker": false,
1500 - "timezone": "browser",
1501 - "to": "now"
1502 - },
1503 - "title": "Samba AD audit",
1504 - "variables": [
1505 - {
1506 - "kind": "IntervalVariable",
1507 - "spec": {
1508 - "auto": false,
1509 - "auto_count": 30,
1510 - "auto_min": "10s",
1511 - "current": {
1512 - "text": "1s",
1513 - "value": "1s"
1514 - },
1515 - "hide": "dontHide",
1516 - "name": "interval",
1517 - "options": [
1518 - {
1519 - "selected": true,
1520 - "text": "1s",
1521 - "value": "1s"
1522 - },
1523 - {
1524 - "selected": false,
1525 - "text": "3s",
1526 - "value": "3s"
1527 - },
1380 + "items": [
1528 1381 {
1529 - "selected": false,
1530 - "text": "5s",
1531 - "value": "5s"
1532 - },
1533 - {
1534 - "selected": false,
1535 - "text": "10s",
1536 - "value": "10s"
1537 - },
1538 - {
1539 - "selected": false,
1540 - "text": "30s",
1541 - "value": "30s"
1542 - },
1543 - {
1544 - "selected": false,
1545 - "text": "1m",
1546 - "value": "1m"
1547 - },
1548 - {
1549 - "selected": false,
1550 - "text": "10m",
1551 - "value": "10m"
1552 - },
1553 - {
1554 - "selected": false,
1555 - "text": "30m",
1556 - "value": "30m"
1382 + "kind": "GridLayoutItem",
1383 + "spec": {
1384 + "x": 0,
1385 + "y": 0,
1386 + "width": 24,
1387 + "height": 8,
1388 + "element": {
1389 + "kind": "ElementReference",
1390 + "name": "panel-1"
1391 + }
1392 + }
1557 1393 },
1558 1394 {
1559 - "selected": false,
1560 - "text": "1h",
1561 - "value": "1h"
1395 + "kind": "GridLayoutItem",
1396 + "spec": {
1397 + "x": 0,
1398 + "y": 8,
1399 + "width": 24,
1400 + "height": 7,
1401 + "element": {
1402 + "kind": "ElementReference",
1403 + "name": "panel-7"
1404 + }
1405 + }
1562 1406 },
1563 1407 {
1564 - "selected": false,
1565 - "text": "6h",
1566 - "value": "6h"
1408 + "kind": "GridLayoutItem",
1409 + "spec": {
1410 + "x": 0,
1411 + "y": 15,
1412 + "width": 24,
1413 + "height": 7,
1414 + "element": {
1415 + "kind": "ElementReference",
1416 + "name": "panel-8"
1417 + }
1418 + }
1567 1419 },
1568 1420 {
1569 - "selected": false,
1570 - "text": "12h",
1571 - "value": "12h"
1421 + "kind": "GridLayoutItem",
1422 + "spec": {
1423 + "x": 0,
1424 + "y": 22,
1425 + "width": 12,
1426 + "height": 8,
1427 + "element": {
1428 + "kind": "ElementReference",
1429 + "name": "panel-2"
1430 + }
1431 + }
1572 1432 },
1573 1433 {
1574 - "selected": false,
1575 - "text": "1d",
1576 - "value": "1d"
1434 + "kind": "GridLayoutItem",
1435 + "spec": {
1436 + "x": 12,
1437 + "y": 22,
1438 + "width": 12,
1439 + "height": 8,
1440 + "element": {
1441 + "kind": "ElementReference",
1442 + "name": "panel-3"
1443 + }
1444 + }
1577 1445 },
1578 1446 {
1579 - "selected": false,
1580 - "text": "7d",
1581 - "value": "7d"
1447 + "kind": "GridLayoutItem",
1448 + "spec": {
1449 + "x": 0,
1450 + "y": 30,
1451 + "width": 12,
1452 + "height": 8,
1453 + "element": {
1454 + "kind": "ElementReference",
1455 + "name": "panel-4"
1456 + }
1457 + }
1582 1458 },
1583 1459 {
1584 - "selected": false,
1585 - "text": "14d",
1586 - "value": "14d"
1460 + "kind": "GridLayoutItem",
1461 + "spec": {
1462 + "x": 12,
1463 + "y": 30,
1464 + "width": 12,
1465 + "height": 8,
1466 + "element": {
1467 + "kind": "ElementReference",
1468 + "name": "panel-5"
1469 + }
1470 + }
1587 1471 },
1588 1472 {
1589 - "selected": false,
1590 - "text": "30d",
1591 - "value": "30d"
1473 + "kind": "GridLayoutItem",
1474 + "spec": {
1475 + "x": 0,
1476 + "y": 38,
1477 + "width": 12,
1478 + "height": 8,
1479 + "element": {
1480 + "kind": "ElementReference",
1481 + "name": "panel-6"
1482 + }
1483 + }
1592 1484 }
1593 - ],
1594 - "query": "1s,3s,5s,10s,30s,1m,10m,30m,1h,6h,12h,1d,7d,14d,30d",
1595 - "refresh": "onTimeRangeChanged",
1596 - "skipUrlSync": false
1485 + ]
1486 + }
1487 + },
1488 + "links": [],
1489 + "liveNow": false,
1490 + "preload": false,
1491 + "tags": [
1492 + "samba",
1493 + "ad",
1494 + "audit"
1495 + ],
1496 + "timeSettings": {
1497 + "timezone": "browser",
1498 + "from": "now-6h",
1499 + "to": "now",
1500 + "autoRefresh": "",
1501 + "autoRefreshIntervals": [
1502 + "5s",
1503 + "10s",
1504 + "30s",
1505 + "1m",
1506 + "5m",
1507 + "15m",
1508 + "30m",
1509 + "1h",
1510 + "2h",
1511 + "1d"
1512 + ],
1513 + "hideTimepicker": false,
1514 + "fiscalYearStartMonth": 0
1515 + },
1516 + "title": "Samba AD audit",
1517 + "variables": [
1518 + {
1519 + "kind": "IntervalVariable",
1520 + "spec": {
1521 + "name": "interval",
1522 + "query": "1s,3s,5s,10s,30s,1m,10m,30m,1h,6h,12h,1d,7d,14d,30d",
1523 + "current": {
1524 + "text": "1m",
1525 + "value": "1m"
1526 + },
1527 + "options": [
1528 + {
1529 + "selected": true,
1530 + "text": "1m",
1531 + "value": "1m"
1532 + },
1533 + {
1534 + "selected": false,
1535 + "text": "10m",
1536 + "value": "10m"
1537 + },
1538 + {
1539 + "selected": false,
1540 + "text": "30m",
1541 + "value": "30m"
1542 + },
1543 + {
1544 + "selected": false,
1545 + "text": "1h",
1546 + "value": "1h"
1547 + },
1548 + {
1549 + "selected": false,
1550 + "text": "6h",
1551 + "value": "6h"
1552 + },
1553 + {
1554 + "selected": false,
1555 + "text": "12h",
1556 + "value": "12h"
1557 + },
1558 + {
1559 + "selected": false,
1560 + "text": "1d",
1561 + "value": "1d"
1562 + }
1563 + ],
1564 + "auto": false,
1565 + "auto_min": "10s",
1566 + "auto_count": 30,
1567 + "refresh": "onTimeRangeChanged",
1568 + "hide": "dontHide",
1569 + "skipUrlSync": false
1570 + }
1571 + }
1572 + ],
1573 + "preferences": {
1574 + "layout": {
1575 + "kind": "GridLayout",
1576 + "spec": {
1577 + "items": []
1578 + }
1597 1579 }
1598 1580 }
1599 - ]
1581 + }
1600 1582 }

guest revised this gist 1 day ago. Go to revision

1 file changed, 1600 insertions

grafana.json(file created)

@@ -0,0 +1,1600 @@
1 + {
2 + "annotations": [
3 + {
4 + "kind": "AnnotationQuery",
5 + "spec": {
6 + "builtIn": true,
7 + "enable": true,
8 + "hide": true,
9 + "iconColor": "rgba(0, 211, 255, 1)",
10 + "name": "Annotations & Alerts",
11 + "query": {
12 + "group": "grafana",
13 + "kind": "DataQuery",
14 + "spec": {},
15 + "version": "v0"
16 + }
17 + }
18 + }
19 + ],
20 + "cursorSync": "Off",
21 + "editable": true,
22 + "elements": {
23 + "panel-1": {
24 + "kind": "Panel",
25 + "spec": {
26 + "data": {
27 + "kind": "QueryGroup",
28 + "spec": {
29 + "queries": [
30 + {
31 + "kind": "PanelQuery",
32 + "spec": {
33 + "hidden": false,
34 + "query": {
35 + "datasource": {
36 + "name": "afoiuzkkxju2of"
37 + },
38 + "group": "influxdb",
39 + "kind": "DataQuery",
40 + "spec": {
41 + "alias": "machine_login",
42 + "groupBy": [
43 + {
44 + "params": [
45 + "$interval"
46 + ],
47 + "type": "time"
48 + },
49 + {
50 + "params": [
51 + "domain::tag"
52 + ],
53 + "type": "tag"
54 + },
55 + {
56 + "params": [
57 + "null"
58 + ],
59 + "type": "fill"
60 + }
61 + ],
62 + "measurement": "samba_auth",
63 + "orderByTime": "ASC",
64 + "policy": "default",
65 + "query": "SELECT count(\"client_account\") FROM \"samba_auth\" WHERE (\"status\"::tag = 'NT_STATUS_OK' AND \"account\"::tag =~ /^MACHINE/) AND $timeFilter GROUP BY time($interval), \"domain\"::tag fill(null)",
66 + "rawQuery": false,
67 + "resultFormat": "time_series",
68 + "select": [
69 + [
70 + {
71 + "params": [
72 + "client_account"
73 + ],
74 + "type": "field"
75 + },
76 + {
77 + "params": [],
78 + "type": "count"
79 + }
80 + ]
81 + ],
82 + "tags": [
83 + {
84 + "key": "status::tag",
85 + "operator": "=",
86 + "value": "NT_STATUS_OK"
87 + },
88 + {
89 + "condition": "AND",
90 + "key": "account::tag",
91 + "operator": "=~",
92 + "value": "/^MACHINE/"
93 + }
94 + ]
95 + },
96 + "version": "v0"
97 + },
98 + "refId": "A"
99 + }
100 + },
101 + {
102 + "kind": "PanelQuery",
103 + "spec": {
104 + "hidden": false,
105 + "query": {
106 + "datasource": {
107 + "name": "afoiuzkkxju2of"
108 + },
109 + "group": "influxdb",
110 + "kind": "DataQuery",
111 + "spec": {
112 + "alias": "user_login",
113 + "groupBy": [
114 + {
115 + "params": [
116 + "$interval"
117 + ],
118 + "type": "time"
119 + },
120 + {
121 + "params": [
122 + "domain::tag"
123 + ],
124 + "type": "tag"
125 + },
126 + {
127 + "params": [
128 + "null"
129 + ],
130 + "type": "fill"
131 + }
132 + ],
133 + "measurement": "samba_auth",
134 + "orderByTime": "ASC",
135 + "policy": "default",
136 + "query": "SELECT count(\"client_account\") FROM \"samba_auth\" WHERE (\"status\"::tag = 'NT_STATUS_OK' AND \"account\"::tag =~ /^user/) AND $timeFilter GROUP BY time($interval), \"domain\"::tag fill(null)",
137 + "rawQuery": false,
138 + "resultFormat": "time_series",
139 + "select": [
140 + [
141 + {
142 + "params": [
143 + "client_account"
144 + ],
145 + "type": "field"
146 + },
147 + {
148 + "params": [],
149 + "type": "count"
150 + }
151 + ]
152 + ],
153 + "tags": [
154 + {
155 + "key": "status::tag",
156 + "operator": "=",
157 + "value": "NT_STATUS_OK"
158 + },
159 + {
160 + "condition": "AND",
161 + "key": "account::tag",
162 + "operator": "=~",
163 + "value": "/^user/"
164 + },
165 + {
166 + "condition": "OR",
167 + "key": "account::tag",
168 + "operator": "=~",
169 + "value": "/^loadtest/"
170 + }
171 + ]
172 + },
173 + "version": "v0"
174 + },
175 + "refId": "B"
176 + }
177 + }
178 + ],
179 + "queryOptions": {},
180 + "transformations": []
181 + }
182 + },
183 + "description": "Успешные входы в домен (samba_auth): машинные и пользовательские, разбивка по домену.",
184 + "id": 1,
185 + "links": [],
186 + "title": "Logins OK",
187 + "vizConfig": {
188 + "group": "timeseries",
189 + "kind": "VizConfig",
190 + "spec": {
191 + "fieldConfig": {
192 + "defaults": {
193 + "color": {
194 + "mode": "palette-classic"
195 + },
196 + "custom": {
197 + "axisBorderShow": false,
198 + "axisCenteredZero": false,
199 + "axisColorMode": "text",
200 + "axisLabel": "",
201 + "axisPlacement": "auto",
202 + "barAlignment": 0,
203 + "barWidthFactor": 0.6,
204 + "drawStyle": "line",
205 + "fillOpacity": 10,
206 + "gradientMode": "none",
207 + "hideFrom": {
208 + "legend": false,
209 + "tooltip": false,
210 + "viz": false
211 + },
212 + "insertNulls": false,
213 + "lineInterpolation": "smooth",
214 + "lineWidth": 1,
215 + "pointSize": 5,
216 + "scaleDistribution": {
217 + "type": "linear"
218 + },
219 + "showPoints": "auto",
220 + "showValues": false,
221 + "spanNulls": false,
222 + "stacking": {
223 + "group": "A",
224 + "mode": "none"
225 + },
226 + "thresholdsStyle": {
227 + "mode": "off"
228 + }
229 + },
230 + "thresholds": {
231 + "mode": "absolute",
232 + "steps": [
233 + {
234 + "color": "green",
235 + "value": 0
236 + },
237 + {
238 + "color": "red",
239 + "value": 80
240 + }
241 + ]
242 + }
243 + },
244 + "overrides": []
245 + },
246 + "options": {
247 + "annotations": {
248 + "clustering": -1,
249 + "multiLane": false
250 + },
251 + "legend": {
252 + "calcs": [],
253 + "displayMode": "list",
254 + "placement": "bottom",
255 + "showLegend": true
256 + },
257 + "tooltip": {
258 + "hideZeros": false,
259 + "mode": "single",
260 + "sort": "none"
261 + }
262 + }
263 + },
264 + "version": "13.0.1+security-01"
265 + }
266 + }
267 + },
268 + "panel-2": {
269 + "kind": "Panel",
270 + "spec": {
271 + "data": {
272 + "kind": "QueryGroup",
273 + "spec": {
274 + "queries": [
275 + {
276 + "kind": "PanelQuery",
277 + "spec": {
278 + "hidden": false,
279 + "query": {
280 + "datasource": {
281 + "name": "afoiuzkkxju2of"
282 + },
283 + "group": "influxdb",
284 + "kind": "DataQuery",
285 + "spec": {
286 + "groupBy": [],
287 + "measurement": "samba_dsdb",
288 + "orderByTime": "ASC",
289 + "policy": "default",
290 + "query": "SELECT count(\"status_code\") FROM \"samba_dsdb\" WHERE $timeFilter GROUP BY time($interval), \"operation\"::tag fill(null)",
291 + "rawQuery": true,
292 + "resultFormat": "time_series",
293 + "select": [],
294 + "tags": []
295 + },
296 + "version": "v0"
297 + },
298 + "refId": "A"
299 + }
300 + }
301 + ],
302 + "queryOptions": {},
303 + "transformations": []
304 + }
305 + },
306 + "description": "Число изменений объектов каталога (samba_dsdb), разбивка по типу операции.",
307 + "id": 2,
308 + "links": [],
309 + "title": "DSDB: изменения по операциям",
310 + "vizConfig": {
311 + "group": "timeseries",
312 + "kind": "VizConfig",
313 + "spec": {
314 + "fieldConfig": {
315 + "defaults": {
316 + "color": {
317 + "mode": "palette-classic"
318 + },
319 + "custom": {
320 + "axisBorderShow": false,
321 + "axisCenteredZero": false,
322 + "axisColorMode": "text",
323 + "axisLabel": "",
324 + "axisPlacement": "auto",
325 + "barAlignment": 0,
326 + "barWidthFactor": 0.6,
327 + "drawStyle": "bars",
328 + "fillOpacity": 50,
329 + "gradientMode": "none",
330 + "hideFrom": {
331 + "legend": false,
332 + "tooltip": false,
333 + "viz": false
334 + },
335 + "insertNulls": false,
336 + "lineInterpolation": "linear",
337 + "lineWidth": 1,
338 + "pointSize": 5,
339 + "scaleDistribution": {
340 + "type": "linear"
341 + },
342 + "showPoints": "auto",
343 + "showValues": false,
344 + "spanNulls": false,
345 + "stacking": {
346 + "group": "A",
347 + "mode": "normal"
348 + },
349 + "thresholdsStyle": {
350 + "mode": "off"
351 + }
352 + },
353 + "thresholds": {
354 + "mode": "absolute",
355 + "steps": [
356 + {
357 + "color": "green",
358 + "value": 0
359 + },
360 + {
361 + "color": "red",
362 + "value": 80
363 + }
364 + ]
365 + }
366 + },
367 + "overrides": []
368 + },
369 + "options": {
370 + "annotations": {
371 + "clustering": -1,
372 + "multiLane": false
373 + },
374 + "legend": {
375 + "calcs": [],
376 + "displayMode": "list",
377 + "placement": "bottom",
378 + "showLegend": true
379 + },
380 + "tooltip": {
381 + "hideZeros": false,
382 + "mode": "multi",
383 + "sort": "desc"
384 + }
385 + }
386 + },
387 + "version": "13.0.1+security-01"
388 + }
389 + }
390 + },
391 + "panel-3": {
392 + "kind": "Panel",
393 + "spec": {
394 + "data": {
395 + "kind": "QueryGroup",
396 + "spec": {
397 + "queries": [
398 + {
399 + "kind": "PanelQuery",
400 + "spec": {
401 + "hidden": false,
402 + "query": {
403 + "datasource": {
404 + "name": "afoiuzkkxju2of"
405 + },
406 + "group": "influxdb",
407 + "kind": "DataQuery",
408 + "spec": {
409 + "groupBy": [],
410 + "measurement": "samba_dsdb",
411 + "orderByTime": "ASC",
412 + "policy": "default",
413 + "query": "SELECT count(\"status_code\") FROM \"samba_dsdb\" WHERE $timeFilter GROUP BY time($interval), \"as_system\"::tag fill(null)",
414 + "rawQuery": true,
415 + "resultFormat": "time_series",
416 + "select": [],
417 + "tags": []
418 + },
419 + "version": "v0"
420 + },
421 + "refId": "A"
422 + }
423 + }
424 + ],
425 + "queryOptions": {},
426 + "transformations": []
427 + }
428 + },
429 + "description": "Изменения каталога с разбивкой по performedAsSystem (true = выполнено системой).",
430 + "id": 3,
431 + "links": [],
432 + "title": "DSDB: система vs пользователь",
433 + "vizConfig": {
434 + "group": "timeseries",
435 + "kind": "VizConfig",
436 + "spec": {
437 + "fieldConfig": {
438 + "defaults": {
439 + "color": {
440 + "mode": "palette-classic"
441 + },
442 + "custom": {
443 + "axisBorderShow": false,
444 + "axisCenteredZero": false,
445 + "axisColorMode": "text",
446 + "axisLabel": "",
447 + "axisPlacement": "auto",
448 + "barAlignment": 0,
449 + "barWidthFactor": 0.6,
450 + "drawStyle": "line",
451 + "fillOpacity": 20,
452 + "gradientMode": "none",
453 + "hideFrom": {
454 + "legend": false,
455 + "tooltip": false,
456 + "viz": false
457 + },
458 + "insertNulls": false,
459 + "lineInterpolation": "smooth",
460 + "lineWidth": 1,
461 + "pointSize": 5,
462 + "scaleDistribution": {
463 + "type": "linear"
464 + },
465 + "showPoints": "auto",
466 + "showValues": false,
467 + "spanNulls": false,
468 + "stacking": {
469 + "group": "A",
470 + "mode": "none"
471 + },
472 + "thresholdsStyle": {
473 + "mode": "off"
474 + }
475 + },
476 + "thresholds": {
477 + "mode": "absolute",
478 + "steps": [
479 + {
480 + "color": "green",
481 + "value": 0
482 + },
483 + {
484 + "color": "red",
485 + "value": 80
486 + }
487 + ]
488 + }
489 + },
490 + "overrides": []
491 + },
492 + "options": {
493 + "annotations": {
494 + "clustering": -1,
495 + "multiLane": false
496 + },
497 + "legend": {
498 + "calcs": [],
499 + "displayMode": "list",
500 + "placement": "bottom",
501 + "showLegend": true
502 + },
503 + "tooltip": {
504 + "hideZeros": false,
505 + "mode": "multi",
506 + "sort": "desc"
507 + }
508 + }
509 + },
510 + "version": "13.0.1+security-01"
511 + }
512 + }
513 + },
514 + "panel-4": {
515 + "kind": "Panel",
516 + "spec": {
517 + "data": {
518 + "kind": "QueryGroup",
519 + "spec": {
520 + "queries": [
521 + {
522 + "kind": "PanelQuery",
523 + "spec": {
524 + "hidden": false,
525 + "query": {
526 + "datasource": {
527 + "name": "afoiuzkkxju2of"
528 + },
529 + "group": "influxdb",
530 + "kind": "DataQuery",
531 + "spec": {
532 + "groupBy": [],
533 + "measurement": "samba_dsdb",
534 + "orderByTime": "ASC",
535 + "policy": "default",
536 + "query": "SELECT count(\"status_code\") FROM \"samba_dsdb\" WHERE $timeFilter GROUP BY time($interval), \"user_sid\"::tag fill(null)",
537 + "rawQuery": true,
538 + "resultFormat": "time_series",
539 + "select": [],
540 + "tags": []
541 + },
542 + "version": "v0"
543 + },
544 + "refId": "A"
545 + }
546 + }
547 + ],
548 + "queryOptions": {},
549 + "transformations": []
550 + }
551 + },
552 + "description": "Кто инициировал изменения каталога — разбивка по userSid.",
553 + "id": 4,
554 + "links": [],
555 + "title": "DSDB: топ инициаторов (SID)",
556 + "vizConfig": {
557 + "group": "timeseries",
558 + "kind": "VizConfig",
559 + "spec": {
560 + "fieldConfig": {
561 + "defaults": {
562 + "color": {
563 + "mode": "palette-classic"
564 + },
565 + "custom": {
566 + "axisBorderShow": false,
567 + "axisCenteredZero": false,
568 + "axisColorMode": "text",
569 + "axisLabel": "",
570 + "axisPlacement": "auto",
571 + "barAlignment": 0,
572 + "barWidthFactor": 0.6,
573 + "drawStyle": "bars",
574 + "fillOpacity": 50,
575 + "gradientMode": "none",
576 + "hideFrom": {
577 + "legend": false,
578 + "tooltip": false,
579 + "viz": false
580 + },
581 + "insertNulls": false,
582 + "lineInterpolation": "linear",
583 + "lineWidth": 1,
584 + "pointSize": 5,
585 + "scaleDistribution": {
586 + "type": "linear"
587 + },
588 + "showPoints": "auto",
589 + "showValues": false,
590 + "spanNulls": false,
591 + "stacking": {
592 + "group": "A",
593 + "mode": "normal"
594 + },
595 + "thresholdsStyle": {
596 + "mode": "off"
597 + }
598 + },
599 + "thresholds": {
600 + "mode": "absolute",
601 + "steps": [
602 + {
603 + "color": "green",
604 + "value": 0
605 + },
606 + {
607 + "color": "red",
608 + "value": 80
609 + }
610 + ]
611 + }
612 + },
613 + "overrides": []
614 + },
615 + "options": {
616 + "annotations": {
617 + "clustering": -1,
618 + "multiLane": false
619 + },
620 + "legend": {
621 + "calcs": [
622 + "sum"
623 + ],
624 + "displayMode": "table",
625 + "placement": "right",
626 + "showLegend": true
627 + },
628 + "tooltip": {
629 + "hideZeros": false,
630 + "mode": "multi",
631 + "sort": "desc"
632 + }
633 + }
634 + },
635 + "version": "13.0.1+security-01"
636 + }
637 + }
638 + },
639 + "panel-5": {
640 + "kind": "Panel",
641 + "spec": {
642 + "data": {
643 + "kind": "QueryGroup",
644 + "spec": {
645 + "queries": [
646 + {
647 + "kind": "PanelQuery",
648 + "spec": {
649 + "hidden": false,
650 + "query": {
651 + "datasource": {
652 + "name": "afoiuzkkxju2of"
653 + },
654 + "group": "influxdb",
655 + "kind": "DataQuery",
656 + "spec": {
657 + "groupBy": [],
658 + "measurement": "samba_dsdb_tx",
659 + "orderByTime": "ASC",
660 + "policy": "default",
661 + "query": "SELECT mean(\"duration\") AS \"mean\", max(\"duration\") AS \"max\" FROM \"samba_dsdb_tx\" WHERE $timeFilter GROUP BY time($interval) fill(null)",
662 + "rawQuery": true,
663 + "resultFormat": "time_series",
664 + "select": [],
665 + "tags": []
666 + },
667 + "version": "v0"
668 + },
669 + "refId": "A"
670 + }
671 + }
672 + ],
673 + "queryOptions": {},
674 + "transformations": []
675 + }
676 + },
677 + "description": "Длительность транзакций каталога (samba_dsdb_tx) в микросекундах.",
678 + "id": 5,
679 + "links": [],
680 + "title": "Транзакции: длительность (mean/max)",
681 + "vizConfig": {
682 + "group": "timeseries",
683 + "kind": "VizConfig",
684 + "spec": {
685 + "fieldConfig": {
686 + "defaults": {
687 + "color": {
688 + "mode": "palette-classic"
689 + },
690 + "custom": {
691 + "axisBorderShow": false,
692 + "axisCenteredZero": false,
693 + "axisColorMode": "text",
694 + "axisLabel": "",
695 + "axisPlacement": "auto",
696 + "barAlignment": 0,
697 + "barWidthFactor": 0.6,
698 + "drawStyle": "line",
699 + "fillOpacity": 10,
700 + "gradientMode": "none",
701 + "hideFrom": {
702 + "legend": false,
703 + "tooltip": false,
704 + "viz": false
705 + },
706 + "insertNulls": false,
707 + "lineInterpolation": "smooth",
708 + "lineWidth": 1,
709 + "pointSize": 5,
710 + "scaleDistribution": {
711 + "type": "linear"
712 + },
713 + "showPoints": "auto",
714 + "showValues": false,
715 + "spanNulls": false,
716 + "stacking": {
717 + "group": "A",
718 + "mode": "none"
719 + },
720 + "thresholdsStyle": {
721 + "mode": "off"
722 + }
723 + },
724 + "thresholds": {
725 + "mode": "absolute",
726 + "steps": [
727 + {
728 + "color": "green",
729 + "value": 0
730 + },
731 + {
732 + "color": "red",
733 + "value": 80
734 + }
735 + ]
736 + },
737 + "unit": "µs"
738 + },
739 + "overrides": []
740 + },
741 + "options": {
742 + "annotations": {
743 + "clustering": -1,
744 + "multiLane": false
745 + },
746 + "legend": {
747 + "calcs": [
748 + "mean",
749 + "max"
750 + ],
751 + "displayMode": "table",
752 + "placement": "bottom",
753 + "showLegend": true
754 + },
755 + "tooltip": {
756 + "hideZeros": false,
757 + "mode": "multi",
758 + "sort": "desc"
759 + }
760 + }
761 + },
762 + "version": "13.0.1+security-01"
763 + }
764 + }
765 + },
766 + "panel-6": {
767 + "kind": "Panel",
768 + "spec": {
769 + "data": {
770 + "kind": "QueryGroup",
771 + "spec": {
772 + "queries": [
773 + {
774 + "kind": "PanelQuery",
775 + "spec": {
776 + "hidden": false,
777 + "query": {
778 + "datasource": {
779 + "name": "afoiuzkkxju2of"
780 + },
781 + "group": "influxdb",
782 + "kind": "DataQuery",
783 + "spec": {
784 + "groupBy": [],
785 + "measurement": "samba_dsdb_tx",
786 + "orderByTime": "ASC",
787 + "policy": "default",
788 + "query": "SELECT count(\"duration\") FROM \"samba_dsdb_tx\" WHERE $timeFilter GROUP BY time($interval), \"action\"::tag fill(null)",
789 + "rawQuery": true,
790 + "resultFormat": "time_series",
791 + "select": [],
792 + "tags": []
793 + },
794 + "version": "v0"
795 + },
796 + "refId": "A"
797 + }
798 + }
799 + ],
800 + "queryOptions": {},
801 + "transformations": []
802 + }
803 + },
804 + "description": "Число транзакций каталога, разбивка по action (commit / rollback / prepare commit / begin).",
805 + "id": 6,
806 + "links": [],
807 + "title": "Транзакции по типу действия",
808 + "vizConfig": {
809 + "group": "timeseries",
810 + "kind": "VizConfig",
811 + "spec": {
812 + "fieldConfig": {
813 + "defaults": {
814 + "color": {
815 + "mode": "palette-classic"
816 + },
817 + "custom": {
818 + "axisBorderShow": false,
819 + "axisCenteredZero": false,
820 + "axisColorMode": "text",
821 + "axisLabel": "",
822 + "axisPlacement": "auto",
823 + "barAlignment": 0,
824 + "barWidthFactor": 0.6,
825 + "drawStyle": "bars",
826 + "fillOpacity": 50,
827 + "gradientMode": "none",
828 + "hideFrom": {
829 + "legend": false,
830 + "tooltip": false,
831 + "viz": false
832 + },
833 + "insertNulls": false,
834 + "lineInterpolation": "linear",
835 + "lineWidth": 1,
836 + "pointSize": 5,
837 + "scaleDistribution": {
838 + "type": "linear"
839 + },
840 + "showPoints": "auto",
841 + "showValues": false,
842 + "spanNulls": false,
843 + "stacking": {
844 + "group": "A",
845 + "mode": "normal"
846 + },
847 + "thresholdsStyle": {
848 + "mode": "off"
849 + }
850 + },
851 + "thresholds": {
852 + "mode": "absolute",
853 + "steps": [
854 + {
855 + "color": "green",
856 + "value": 0
857 + },
858 + {
859 + "color": "red",
860 + "value": 80
861 + }
862 + ]
863 + }
864 + },
865 + "overrides": []
866 + },
867 + "options": {
868 + "annotations": {
869 + "clustering": -1,
870 + "multiLane": false
871 + },
872 + "legend": {
873 + "calcs": [],
874 + "displayMode": "list",
875 + "placement": "bottom",
876 + "showLegend": true
877 + },
878 + "tooltip": {
879 + "hideZeros": false,
880 + "mode": "multi",
881 + "sort": "desc"
882 + }
883 + }
884 + },
885 + "version": "13.0.1+security-01"
886 + }
887 + }
888 + },
889 + "panel-7": {
890 + "kind": "Panel",
891 + "spec": {
892 + "data": {
893 + "kind": "QueryGroup",
894 + "spec": {
895 + "queries": [
896 + {
897 + "kind": "PanelQuery",
898 + "spec": {
899 + "hidden": false,
900 + "query": {
901 + "datasource": {
902 + "name": "afoiuzkkxju2of"
903 + },
904 + "group": "influxdb",
905 + "kind": "DataQuery",
906 + "spec": {
907 + "alias": "user_smb",
908 + "groupBy": [
909 + {
910 + "params": [
911 + "$interval"
912 + ],
913 + "type": "time"
914 + },
915 + {
916 + "params": [
917 + "domain::tag"
918 + ],
919 + "type": "tag"
920 + },
921 + {
922 + "params": [
923 + "null"
924 + ],
925 + "type": "fill"
926 + }
927 + ],
928 + "measurement": "samba_authz",
929 + "orderByTime": "ASC",
930 + "policy": "default",
931 + "query": "SELECT count(\"client_account\") FROM \"samba_auth\" WHERE (\"status\"::tag = 'NT_STATUS_OK' AND \"account\"::tag =~ /^MACHINE/) AND $timeFilter GROUP BY time($interval), \"domain\"::tag fill(null)",
932 + "rawQuery": false,
933 + "resultFormat": "time_series",
934 + "select": [
935 + [
936 + {
937 + "params": [
938 + "auth_type"
939 + ],
940 + "type": "field"
941 + },
942 + {
943 + "params": [],
944 + "type": "count"
945 + }
946 + ]
947 + ],
948 + "tags": [
949 + {
950 + "key": "service::tag",
951 + "operator": "=",
952 + "value": "SMB2"
953 + },
954 + {
955 + "condition": "AND",
956 + "key": "auth_type::field",
957 + "operator": "=",
958 + "value": "krb5"
959 + },
960 + {
961 + "condition": "AND",
962 + "key": "account::tag",
963 + "operator": "=~",
964 + "value": "/^user-/"
965 + }
966 + ]
967 + },
968 + "version": "v0"
969 + },
970 + "refId": "A"
971 + }
972 + },
973 + {
974 + "kind": "PanelQuery",
975 + "spec": {
976 + "hidden": false,
977 + "query": {
978 + "datasource": {
979 + "name": "afoiuzkkxju2of"
980 + },
981 + "group": "influxdb",
982 + "kind": "DataQuery",
983 + "spec": {
984 + "alias": "machine_smb",
985 + "groupBy": [
986 + {
987 + "params": [
988 + "$interval"
989 + ],
990 + "type": "time"
991 + },
992 + {
993 + "params": [
994 + "domain::tag"
995 + ],
996 + "type": "tag"
997 + },
998 + {
999 + "params": [
1000 + "null"
1001 + ],
1002 + "type": "fill"
1003 + }
1004 + ],
1005 + "measurement": "samba_authz",
1006 + "orderByTime": "ASC",
1007 + "policy": "default",
1008 + "query": "SELECT count(\"client_account\") FROM \"samba_auth\" WHERE (\"status\"::tag = 'NT_STATUS_OK' AND \"account\"::tag =~ /^MACHINE/) AND $timeFilter GROUP BY time($interval), \"domain\"::tag fill(null)",
1009 + "rawQuery": false,
1010 + "resultFormat": "time_series",
1011 + "select": [
1012 + [
1013 + {
1014 + "params": [
1015 + "auth_type"
1016 + ],
1017 + "type": "field"
1018 + },
1019 + {
1020 + "params": [],
1021 + "type": "count"
1022 + }
1023 + ]
1024 + ],
1025 + "tags": [
1026 + {
1027 + "key": "service::tag",
1028 + "operator": "=",
1029 + "value": "SMB2"
1030 + },
1031 + {
1032 + "condition": "AND",
1033 + "key": "auth_type::field",
1034 + "operator": "=",
1035 + "value": "krb5"
1036 + },
1037 + {
1038 + "condition": "AND",
1039 + "key": "account::tag",
1040 + "operator": "=~",
1041 + "value": "/^MACHINE/"
1042 + }
1043 + ]
1044 + },
1045 + "version": "v0"
1046 + },
1047 + "refId": "B"
1048 + }
1049 + }
1050 + ],
1051 + "queryOptions": {},
1052 + "transformations": []
1053 + }
1054 + },
1055 + "description": "",
1056 + "id": 7,
1057 + "links": [],
1058 + "title": "SMB activity",
1059 + "vizConfig": {
1060 + "group": "timeseries",
1061 + "kind": "VizConfig",
1062 + "spec": {
1063 + "fieldConfig": {
1064 + "defaults": {
1065 + "color": {
1066 + "mode": "palette-classic"
1067 + },
1068 + "custom": {
1069 + "axisBorderShow": false,
1070 + "axisCenteredZero": false,
1071 + "axisColorMode": "text",
1072 + "axisLabel": "",
1073 + "axisPlacement": "auto",
1074 + "barAlignment": 0,
1075 + "barWidthFactor": 0.6,
1076 + "drawStyle": "line",
1077 + "fillOpacity": 10,
1078 + "gradientMode": "none",
1079 + "hideFrom": {
1080 + "legend": false,
1081 + "tooltip": false,
1082 + "viz": false
1083 + },
1084 + "insertNulls": false,
1085 + "lineInterpolation": "smooth",
1086 + "lineWidth": 1,
1087 + "pointSize": 5,
1088 + "scaleDistribution": {
1089 + "type": "linear"
1090 + },
1091 + "showPoints": "auto",
1092 + "showValues": false,
1093 + "spanNulls": false,
1094 + "stacking": {
1095 + "group": "A",
1096 + "mode": "none"
1097 + },
1098 + "thresholdsStyle": {
1099 + "mode": "off"
1100 + }
1101 + },
1102 + "thresholds": {
1103 + "mode": "absolute",
1104 + "steps": [
1105 + {
1106 + "color": "green",
1107 + "value": 0
1108 + },
1109 + {
1110 + "color": "red",
1111 + "value": 80
1112 + }
1113 + ]
1114 + }
1115 + },
1116 + "overrides": []
1117 + },
1118 + "options": {
1119 + "annotations": {
1120 + "clustering": -1,
1121 + "multiLane": false
1122 + },
1123 + "legend": {
1124 + "calcs": [],
1125 + "displayMode": "list",
1126 + "placement": "bottom",
1127 + "showLegend": true
1128 + },
1129 + "tooltip": {
1130 + "hideZeros": false,
1131 + "mode": "single",
1132 + "sort": "none"
1133 + }
1134 + }
1135 + },
1136 + "version": "13.0.1+security-01"
1137 + }
1138 + }
1139 + },
1140 + "panel-8": {
1141 + "kind": "Panel",
1142 + "spec": {
1143 + "data": {
1144 + "kind": "QueryGroup",
1145 + "spec": {
1146 + "queries": [
1147 + {
1148 + "kind": "PanelQuery",
1149 + "spec": {
1150 + "hidden": false,
1151 + "query": {
1152 + "datasource": {
1153 + "name": "afoiuzkkxju2of"
1154 + },
1155 + "group": "influxdb",
1156 + "kind": "DataQuery",
1157 + "spec": {
1158 + "alias": "rcode=0",
1159 + "groupBy": [
1160 + {
1161 + "params": [
1162 + "$interval"
1163 + ],
1164 + "type": "time"
1165 + },
1166 + {
1167 + "params": [
1168 + "null"
1169 + ],
1170 + "type": "fill"
1171 + }
1172 + ],
1173 + "measurement": "samba_dns_rcode",
1174 + "orderByTime": "ASC",
1175 + "policy": "default",
1176 + "query": "SELECT count(\"client_account\") FROM \"samba_auth\" WHERE (\"status\"::tag = 'NT_STATUS_OK' AND \"account\"::tag =~ /^MACHINE/) AND $timeFilter GROUP BY time($interval), \"domain\"::tag fill(null)",
1177 + "rawQuery": false,
1178 + "resultFormat": "time_series",
1179 + "select": [
1180 + [
1181 + {
1182 + "params": [
1183 + "rcode"
1184 + ],
1185 + "type": "field"
1186 + },
1187 + {
1188 + "params": [],
1189 + "type": "count"
1190 + }
1191 + ]
1192 + ],
1193 + "tags": [
1194 + {
1195 + "key": "rcode::field",
1196 + "operator": "=",
1197 + "value": "0"
1198 + }
1199 + ]
1200 + },
1201 + "version": "v0"
1202 + },
1203 + "refId": "A"
1204 + }
1205 + },
1206 + {
1207 + "kind": "PanelQuery",
1208 + "spec": {
1209 + "hidden": false,
1210 + "query": {
1211 + "datasource": {
1212 + "name": "afoiuzkkxju2of"
1213 + },
1214 + "group": "influxdb",
1215 + "kind": "DataQuery",
1216 + "spec": {
1217 + "alias": "rcode=3",
1218 + "groupBy": [
1219 + {
1220 + "params": [
1221 + "$interval"
1222 + ],
1223 + "type": "time"
1224 + },
1225 + {
1226 + "params": [
1227 + "null"
1228 + ],
1229 + "type": "fill"
1230 + }
1231 + ],
1232 + "measurement": "samba_dns_rcode",
1233 + "orderByTime": "ASC",
1234 + "policy": "default",
1235 + "query": "SELECT count(\"client_account\") FROM \"samba_auth\" WHERE (\"status\"::tag = 'NT_STATUS_OK' AND \"account\"::tag =~ /^MACHINE/) AND $timeFilter GROUP BY time($interval), \"domain\"::tag fill(null)",
1236 + "rawQuery": false,
1237 + "resultFormat": "time_series",
1238 + "select": [
1239 + [
1240 + {
1241 + "params": [
1242 + "rcode"
1243 + ],
1244 + "type": "field"
1245 + },
1246 + {
1247 + "params": [],
1248 + "type": "count"
1249 + }
1250 + ]
1251 + ],
1252 + "tags": [
1253 + {
1254 + "key": "rcode::field",
1255 + "operator": "=",
1256 + "value": "3"
1257 + }
1258 + ]
1259 + },
1260 + "version": "v0"
1261 + },
1262 + "refId": "B"
1263 + }
1264 + }
1265 + ],
1266 + "queryOptions": {},
1267 + "transformations": []
1268 + }
1269 + },
1270 + "description": "",
1271 + "id": 8,
1272 + "links": [],
1273 + "title": "DNS activity",
1274 + "vizConfig": {
1275 + "group": "timeseries",
1276 + "kind": "VizConfig",
1277 + "spec": {
1278 + "fieldConfig": {
1279 + "defaults": {
1280 + "color": {
1281 + "mode": "palette-classic"
1282 + },
1283 + "custom": {
1284 + "axisBorderShow": false,
1285 + "axisCenteredZero": false,
1286 + "axisColorMode": "text",
1287 + "axisLabel": "",
1288 + "axisPlacement": "auto",
1289 + "barAlignment": 0,
1290 + "barWidthFactor": 0.6,
1291 + "drawStyle": "line",
1292 + "fillOpacity": 10,
1293 + "gradientMode": "none",
1294 + "hideFrom": {
1295 + "legend": false,
1296 + "tooltip": false,
1297 + "viz": false
1298 + },
1299 + "insertNulls": false,
1300 + "lineInterpolation": "smooth",
1301 + "lineWidth": 1,
1302 + "pointSize": 5,
1303 + "scaleDistribution": {
1304 + "type": "linear"
1305 + },
1306 + "showPoints": "auto",
1307 + "showValues": false,
1308 + "spanNulls": false,
1309 + "stacking": {
1310 + "group": "A",
1311 + "mode": "none"
1312 + },
1313 + "thresholdsStyle": {
1314 + "mode": "off"
1315 + }
1316 + },
1317 + "thresholds": {
1318 + "mode": "absolute",
1319 + "steps": [
1320 + {
1321 + "color": "green",
1322 + "value": 0
1323 + },
1324 + {
1325 + "color": "red",
1326 + "value": 80
1327 + }
1328 + ]
1329 + }
1330 + },
1331 + "overrides": []
1332 + },
1333 + "options": {
1334 + "annotations": {
1335 + "clustering": -1,
1336 + "multiLane": false
1337 + },
1338 + "legend": {
1339 + "calcs": [],
1340 + "displayMode": "list",
1341 + "placement": "bottom",
1342 + "showLegend": true
1343 + },
1344 + "tooltip": {
1345 + "hideZeros": false,
1346 + "mode": "single",
1347 + "sort": "none"
1348 + }
1349 + }
1350 + },
1351 + "version": "13.0.1+security-01"
1352 + }
1353 + }
1354 + }
1355 + },
1356 + "layout": {
1357 + "kind": "GridLayout",
1358 + "spec": {
1359 + "items": [
1360 + {
1361 + "kind": "GridLayoutItem",
1362 + "spec": {
1363 + "element": {
1364 + "kind": "ElementReference",
1365 + "name": "panel-1"
1366 + },
1367 + "height": 8,
1368 + "width": 24,
1369 + "x": 0,
1370 + "y": 0
1371 + }
1372 + },
1373 + {
1374 + "kind": "GridLayoutItem",
1375 + "spec": {
1376 + "element": {
1377 + "kind": "ElementReference",
1378 + "name": "panel-7"
1379 + },
1380 + "height": 7,
1381 + "width": 24,
1382 + "x": 0,
1383 + "y": 8
1384 + }
1385 + },
1386 + {
1387 + "kind": "GridLayoutItem",
1388 + "spec": {
1389 + "element": {
1390 + "kind": "ElementReference",
1391 + "name": "panel-8"
1392 + },
1393 + "height": 7,
1394 + "width": 24,
1395 + "x": 0,
1396 + "y": 15
1397 + }
1398 + },
1399 + {
1400 + "kind": "GridLayoutItem",
1401 + "spec": {
1402 + "element": {
1403 + "kind": "ElementReference",
1404 + "name": "panel-2"
1405 + },
1406 + "height": 8,
1407 + "width": 12,
1408 + "x": 0,
1409 + "y": 22
1410 + }
1411 + },
1412 + {
1413 + "kind": "GridLayoutItem",
1414 + "spec": {
1415 + "element": {
1416 + "kind": "ElementReference",
1417 + "name": "panel-3"
1418 + },
1419 + "height": 8,
1420 + "width": 12,
1421 + "x": 12,
1422 + "y": 22
1423 + }
1424 + },
1425 + {
1426 + "kind": "GridLayoutItem",
1427 + "spec": {
1428 + "element": {
1429 + "kind": "ElementReference",
1430 + "name": "panel-4"
1431 + },
1432 + "height": 8,
1433 + "width": 12,
1434 + "x": 0,
1435 + "y": 30
1436 + }
1437 + },
1438 + {
1439 + "kind": "GridLayoutItem",
1440 + "spec": {
1441 + "element": {
1442 + "kind": "ElementReference",
1443 + "name": "panel-5"
1444 + },
1445 + "height": 8,
1446 + "width": 12,
1447 + "x": 12,
1448 + "y": 30
1449 + }
1450 + },
1451 + {
1452 + "kind": "GridLayoutItem",
1453 + "spec": {
1454 + "element": {
1455 + "kind": "ElementReference",
1456 + "name": "panel-6"
1457 + },
1458 + "height": 8,
1459 + "width": 12,
1460 + "x": 0,
1461 + "y": 38
1462 + }
1463 + }
1464 + ]
1465 + }
1466 + },
1467 + "links": [],
1468 + "liveNow": false,
1469 + "preferences": {
1470 + "layout": {
1471 + "kind": "GridLayout",
1472 + "spec": {
1473 + "items": []
1474 + }
1475 + }
1476 + },
1477 + "preload": false,
1478 + "tags": [
1479 + "samba",
1480 + "ad",
1481 + "audit"
1482 + ],
1483 + "timeSettings": {
1484 + "autoRefresh": "5s",
1485 + "autoRefreshIntervals": [
1486 + "5s",
1487 + "10s",
1488 + "30s",
1489 + "1m",
1490 + "5m",
1491 + "15m",
1492 + "30m",
1493 + "1h",
1494 + "2h",
1495 + "1d"
1496 + ],
1497 + "fiscalYearStartMonth": 0,
1498 + "from": "now-15m",
1499 + "hideTimepicker": false,
1500 + "timezone": "browser",
1501 + "to": "now"
1502 + },
1503 + "title": "Samba AD audit",
1504 + "variables": [
1505 + {
1506 + "kind": "IntervalVariable",
1507 + "spec": {
1508 + "auto": false,
1509 + "auto_count": 30,
1510 + "auto_min": "10s",
1511 + "current": {
1512 + "text": "1s",
1513 + "value": "1s"
1514 + },
1515 + "hide": "dontHide",
1516 + "name": "interval",
1517 + "options": [
1518 + {
1519 + "selected": true,
1520 + "text": "1s",
1521 + "value": "1s"
1522 + },
1523 + {
1524 + "selected": false,
1525 + "text": "3s",
1526 + "value": "3s"
1527 + },
1528 + {
1529 + "selected": false,
1530 + "text": "5s",
1531 + "value": "5s"
1532 + },
1533 + {
1534 + "selected": false,
1535 + "text": "10s",
1536 + "value": "10s"
1537 + },
1538 + {
1539 + "selected": false,
1540 + "text": "30s",
1541 + "value": "30s"
1542 + },
1543 + {
1544 + "selected": false,
1545 + "text": "1m",
1546 + "value": "1m"
1547 + },
1548 + {
1549 + "selected": false,
1550 + "text": "10m",
1551 + "value": "10m"
1552 + },
1553 + {
1554 + "selected": false,
1555 + "text": "30m",
1556 + "value": "30m"
1557 + },
1558 + {
1559 + "selected": false,
1560 + "text": "1h",
1561 + "value": "1h"
1562 + },
1563 + {
1564 + "selected": false,
1565 + "text": "6h",
1566 + "value": "6h"
1567 + },
1568 + {
1569 + "selected": false,
1570 + "text": "12h",
1571 + "value": "12h"
1572 + },
1573 + {
1574 + "selected": false,
1575 + "text": "1d",
1576 + "value": "1d"
1577 + },
1578 + {
1579 + "selected": false,
1580 + "text": "7d",
1581 + "value": "7d"
1582 + },
1583 + {
1584 + "selected": false,
1585 + "text": "14d",
1586 + "value": "14d"
1587 + },
1588 + {
1589 + "selected": false,
1590 + "text": "30d",
1591 + "value": "30d"
1592 + }
1593 + ],
1594 + "query": "1s,3s,5s,10s,30s,1m,10m,30m,1h,6h,12h,1d,7d,14d,30d",
1595 + "refresh": "onTimeRangeChanged",
1596 + "skipUrlSync": false
1597 + }
1598 + }
1599 + ]
1600 + }
Newer Older

Powered by Opengist Load: 624ms

English