Falcon LogScale Documentation

The query function holtwinters() is now deprecated and will be removed along with the release of future version 1.73; therefore, its usage in alerts is not recommended.

Enforcing S3 file size limits (30MB) in FDR feeds. Files will not be ingested if they are above the limit.

Introduced the Social Login Settings feature: all customers with access to the organization identity providers page can now change social login settings in the UI. See Configuring Identity Providers for LogScale Cloud for details.

No longer possible to add a color to roles. Existing role colors removed from the UI.

Improved performance when storing alert errors and trigger times in global.

Set dynamic configuration BucketStorageWriteVersion to 3. This sets the format for files written to bucket storage to use a format that allows files larger than 2GB and incurs less memory pressure when decrypting files during download from the bucket. The new format is supported since 1.44.0 only.

Changed the default value for AUTHENTICATION_METHOD from none to single-user.

To set username and password, use the environment variables:

See SINGLE_USER_USERNAME and SINGLE_USER_PASSWORD documentation for more details on these variables.

Set minimum version for the cluster to be 1.44.0.

New metric global-operation-time: tracks local time spent processing each kind of message received on the global events topic.

Audit logging has been improved.

The warning about unsaved changes being lost on an edited dashboard will now only show when actual changes have been made.

Fixed a bug in decryption code used when decrypting downloaded files from bucket storage when version-for-bucket-writes=3. The bug did not allow to decrypt files larger than 2GB.

Fixed an issue where LogScale could log secrets to the debug log when configured to use LDAP or when configured to use SSL for Kafka.