[Security] Entity Analytics: overview and privileged user monitoring

[natasha-moore-elastic]

Resolves #1646 by documenting the new Entity Analytics workflow in the Security app. This includes:

• The new Entity analytics navigation item in the nav menu and the advanced setting that enables it
• The new Entity analytics overview page, which has the same functionality as the existing Entity Analytics dashboard page (to be deprecated in a later Stack version)
• The new privileged user monitoring capability

Previews

New pages:

• Entity analytics overview (mostly the same as the existing Entity Analytics dashboard page, with minor phrasing/formatting edits)
• Privileged user monitoring
  • Privileged user monitoring requirements
  • Set up privileged user monitoring
  • Monitor privileged user activities

Updated pages/sections:

• Advanced Entity Analytics
• Asset criticality > View and assign asset criticality
• Entity store > Enable entity store
• View and analyze risk score data
• View entity details
• Configure advanced settings > Access privileged user monitoring
• Elastic Security UI > Entity analytics

[github-actions]

🔍 Preview links for changed docs

• solutions/security/advanced-entity-analytics/monitor-privileged-user-activitites.md
• solutions/security/advanced-entity-analytics/overview.md
• solutions/security/advanced-entity-analytics/privileged-user-monitoring-requirements.md
• solutions/security/advanced-entity-analytics/privileged-user-monitoring-setup.md
• solutions/security/advanced-entity-analytics.md
• solutions/security/advanced-entity-analytics/asset-criticality.md
• solutions/security/advanced-entity-analytics/entity-store.md
• solutions/security/advanced-entity-analytics/privileged-user-monitoring.md
• solutions/security/advanced-entity-analytics/view-analyze-risk-score-data.md
• solutions/security/advanced-entity-analytics/view-entity-details.md

More links …

• solutions/security/get-started/configure-advanced-settings.md
• solutions/security/get-started/elastic-security-ui.md

[natasha-moore-elastic]

Roles for serverless TBD

[hop-dev]

We haven't created these roles yet, the feature isn't enabled in serverless yet @jaredburgettelastic whats our plan here?

[hop-dev]

@natasha-moore-elastic we wont be releasing this in serverless for probably ~2 weeks does that affect the docs you wish to add?

[natasha-moore-elastic]

Thanks @hop-dev, I've removed serverless references and updated the availability tags to reflect that it will only be available in 9.1. I'll spin off another doc issue to track when we need to add back the serverless references.

[hop-dev]

Great work thank you!

[nastasha-solomon]

Looks great!