[Fleet] Add o365audit, gcp-pubsup, and azure-eventhub as disallowed a…

…gentles inputs (#211262) Closes #211092 ## Summary Disallows unsupported input types for security integrations adopting agentless. ### Checklist - [x] The PR description includes the appropriate Release Notes section, and the correct `release_note:*` label is applied per the [guidelines](https://www.elastic.co/guide/en/kibana/master/contributing.html#kibana-release-notes-process) cc @jamiehynds @qcorporation @kcreddy (cherry picked from commit 46812bc)
elastic · Feb 20, 2025 · 626a365 · 626a365
1 parent f3cbcc0
commit 626a365
Showing 1 changed file with 10 additions and 1 deletion.
diff --git a/x-pack/platform/plugins/shared/fleet/common/constants/agentless.ts b/x-pack/platform/plugins/shared/fleet/common/constants/agentless.ts
@@ -19,4 +19,13 @@ export const AGENTLESS_GLOBAL_TAG_NAME_TEAM = 'team';
 export const AGENTLESS_ALLOWED_OUTPUT_TYPES = [outputType.Elasticsearch];
 
 // Input types to disable for agentless integrations
-export const AGENTLESS_DISABLED_INPUTS = ['tcp', 'udp', 'filestream', 'http_endpoint', 'winlog'];
+export const AGENTLESS_DISABLED_INPUTS = [
+  'tcp',
+  'udp',
+  'filestream',
+  'http_endpoint',
+  'winlog',
+  'o365audit',
+  'gcp-pubsub',
+  'azure-eventhub',
+];