diff --git a/packages/checkpoint/changelog.yml b/packages/checkpoint/changelog.yml
index e74d9171162..fd97d78c61b 100644
--- a/packages/checkpoint/changelog.yml
+++ b/packages/checkpoint/changelog.yml
@@ -1,4 +1,9 @@
 # newer versions go on top
+- version: "1.46.0"
+  changes:
+    - description: Create a more unique fingerprint
+      type: enhancement
+      link: https://github.com/elastic/integrations/pull/16918
 - version: "1.45.0"
   changes:
     - description: Process the packets field in SecureXL format.
diff --git a/packages/checkpoint/data_stream/firewall/elasticsearch/ingest_pipeline/default.yml b/packages/checkpoint/data_stream/firewall/elasticsearch/ingest_pipeline/default.yml
index c1419e6fe53..c58c0f930a9 100644
--- a/packages/checkpoint/data_stream/firewall/elasticsearch/ingest_pipeline/default.yml
+++ b/packages/checkpoint/data_stream/firewall/elasticsearch/ingest_pipeline/default.yml
@@ -194,11 +194,11 @@ processors:
       tag: fingerprint_93b78c95
       if: ctx._id == null
       fields:
-        - '@timestamp'
         - checkpoint.loguid
         - checkpoint.time
-        - checkpoint.segment_time
+        - checkpoint.lastupdatetime
         - checkpoint.sequencenum
+        - checkpoint.update_count
       target_field: "_id"
       ignore_missing: true
   - append: