Discuss the Elastic Stack

Agent Spoofing alerts due to mismatched agent id's since 9.2.1 update

Elastic Security

willemdh (WillemDH) November 13, 2025, 12:55pm 1

Since I updated this afternoon to 9.2.1 this alert triggers continuously for all my 3 agents.

Grtz

Topic		Replies	Views	Activity
Agent Spoofing - Multiple Hosts Using Same Agent after update to 8.5.3 Elastic Security	2	332	January 22, 2023
Metricbeat Jolokia module - same jolokia.agent.id for multiple agents Beats metricbeat	1	294	April 1, 2021
Elastic Agent fault by Fleet manager Beats elastic-agent	1	904	June 4, 2021
Elastic Endpoint Security with Elastic Agent Endpoint Security	16	3246	November 10, 2020
APM agent to server APM	4	1108	September 13, 2018

© 2020. All Rights Reserved - Elasticsearch

Elasticsearch is a trademark of Elasticsearch BV, registered in the U.S. and in other countries
Trademarks
Terms
Privacy
Brand
Code of Conduct

Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.