Hi all, I was wondering whether there is an index time timestamp field which I can enable it through some configurations. I want to capture the index time per each events coming through our platform.
There was a _timestamp field before Elasticsearch 2 which was handy. Since there is no such feature in Elasticsearch anymore we have to capture it at the Metron indexing side. I have had a look at Metron Elasticsearch module, but I couldn't find any part which can be enabled for such a use case. Cheers, Ali
