Alerting UI in 7.7 and TLS

LLin · May 15, 2020, 9:33am

The new feature in the UI in Kibana is a welcome one, but currently, it's saying for me to enable TLS between Kibana and Elasticsearch. We are using a Load Balancer in front of Elasticsearch that terminates HTTPS, so the elasticsearch.hosts variable in the Kibana config is using a HTTPS url.

According to the documentation here that should be sufficient as it offers 2 options, to set up http encryption on Elasticsearch itself, or use a proxy that provides an HTTPS endpoint for Elasticsearch, which the load balancer does. Or am I reading this incorrectly?

rashmi · May 27, 2020, 12:13am

cc @gidimorris @mikecote

mikecote · May 27, 2020, 1:55pm

Hi @LLin,

In the alerting setup and prerequisites documentation, it mentions that TLS on the HTTP interface is required for alerting to work. This would mean a proxy will not suffice.

LLin · May 28, 2020, 5:48am

Hey @mikecote , so in the documentation here:

There's the following statement:

To perform this step, you must enable the Elasticsearch security features or you must have a proxy that provides an HTTPS endpoint for Elasticsearch.<

Is the or part not valid then? Kibana is configured to connect to an HTTPS endpoint that is provided by an F5 proxy for Elasticsearch, so the wording would seem to indicate that it should work.

mikecote · May 28, 2020, 12:36pm

Hi @LLin,

We're working on clarifying the alerting documentation in this PR: https://github.com/elastic/kibana/pull/67486.

The proxy portion is insufficient for alerting to work as it depends on API keys in Elasticsearch which itself requires TLS on Elasticsearch's HTTP interface to work.

Hope this helps,
Mike

Reeker · June 4, 2020, 2:36pm

Hey Mike,

I've installed Elasticsearch,Kibana and Logstash on one server and i am monitoring folders with Filebeat on another PC.

How can i get the Alarms and Actions portion to be visible in Kibana since i am using all 3 components on one device?

Also i am with the free version of all 4 so i presume i need to be at least a Premium user.

Please let me know if there is any way to accomplish this.

Regards
Metodi

mikecote · June 4, 2020, 3:04pm

Hi @Reeker,

To get started you can find the documentation here: https://www.elastic.co/guide/en/kibana/7.7/alerting-getting-started.html.

Since alerting is an xpack feature, all you need is a basic license.

There are a few items to complete before using alerting:

Hope this helps!

system · July 2, 2020, 3:04pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
TLS Between Elastic & Kibana…Alerts Not Working Kibana elastic-stack-security , elastic-stack-alerting	13	2690	May 7, 2021
Alerting with Kibana & Elasticsearch on the same machine Kibana	1	192	July 22, 2021
Enable Alerts and Actions Kibana elastic-stack-security , elastic-stack-alerting	17	2544	March 10, 2021
Alerts and Actions - TLS warning even though TLS is configured Kibana	2	286	June 14, 2020
External SSL for inter-node communication Elasticsearch elastic-stack-security	2	297	August 24, 2021

Alerting UI in 7.7 and TLS

Related Topics