Please follow this: https://cwiki.apache.org/confluence/display/EAG/Quick+Start+with+Alert+Engine+through+API <https://cwiki.apache.org/confluence/display/EAG/Quick+Start+with+Alert+Engine+through+API>.
It has every step. Audit_log_alert is the publishment (named as hdfs_audit_log_enriched_stream_out in the above given doc). For publishment you can refer: https://cwiki.apache.org/confluence/display/EAG/Policy <https://cwiki.apache.org/confluence/display/EAG/Policy> -Sudha Jenslin > On Mar 22, 2017, at 6:47 PM, Jean Rossier <[email protected]> wrote: > > > 2. I read the examples given here: > https://cwiki.apache.org/confluence/display/EAG/Quick+Start+with+Alert+Engine+through+API > > <https://cwiki.apache.org/confluence/display/EAG/Quick+Start+with+Alert+Engine+through+API>. > The policy shown in this page (chapter 5.1) seems more consistant to me. I > would like to POST it to my eagle server, but > a. When installing the 'Hdfs Audit Log Monitor' application, it created > only one hdfs audit log stream (HDFS_AUDIT_LOG_ENRICHED_STREAM_SANDBOX). How > can I create another stream (e.g. HDFS_AUDIT_LOG_E
