APM server can't access elasticsearch

marone · April 23, 2021, 4:20pm

Kibana version: 7.12

Elasticsearch version: 7.12

APM Server version: 7.12

APM Agent language and version: nodejs apm

Browser version: Chrome 89.0.4389.128 (64 bits)

Original install method (e.g. download page, yum, deb, from source, etc.) and version: deb

Fresh install or upgraded from other version? Fresh install

Installed my elastic stack including APM on Azure virtual machine

Description of the problem including expected versus actual behavior. Please include screenshots (if relevant):

Steps to reproduce:
I have two VMs in Azure (node1 and node2) each vm running elasticsearch instance, I installed APM server in node2, and I have a simple nodejs app in node1. I already have kibana running in node1. I installed the npm package in my nodejs app and added it to app.js file. I already enabled xpack security in my elasticsearch cluster using TLS and https with a self signed certificates (followed this tutorial and enabled https)

Errors in browser console (if relevant):

Provide logs and/or server output (if relevant):
activated logging in apm-server.yml and got the following:

{"log.level":"error","@timestamp":"2021-04-23T15:45:33.861Z","log.logger":"publisher_pipeline_output","log.origin":{"file.name":"pipeline/output.go","file.line":154},"message":"Failed to connect to backoff(elasticsearch(https://localhost:9200)): Get \"https://localhost:9200\": dial tcp 127.0.0.1:9200: connect: connection refused","ecs.version":"1.6.0"}

in apm-server.yml file, I added elasticsearch ca certificate but don't know where to locate ssl certificate and client certificate, here is my conf of apm-server.yml:

kibana:
  host: "MyVMname.myregion.cloudapp.azure.com:5601"
  protocol: "https"
  username: "elastic"
  password: "changeme"
  ssl.enabled: true
  ssl.verification_mode: none
  ssl.certificate_authorities: ["/etc/apm-server/config/certs/elasticsearch-ca.pem"]
  # Certificate for SSL client authentication.
  #ssl.certificate: "/etc/pki/client/cert.pem"
  # Client Certificate Key
  #ssl.key: "/etc/pki/client/cert.key"


output.elasticsearch:
  hosts: ["localhost:9200", "node1:9200"]
  protocol: "https"
  username: "elastic"
  password: "changeme"
  ssl.enabled: true
  ssl.verification_mode: none
  ssl.certificate_authorities: ["/etc/apm-server/config/certs/elasticsearch-ca.pem"]
  # Certificate for SSL client authentication.
  #ssl.certificate: "/etc/pki/client/cert.pem"
  # Client Certificate Key
  #ssl.key: "/etc/pki/client/cert.key"

the error I have due to not specifying ssl client ? if so which certificate should I add to yml file ?

system · May 14, 2021, 12:21pm

This topic was automatically closed 20 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
APM-Server unable to connect to elasticsearch APM server	3	1392	August 22, 2021
APM- server not connecting to the elasticsearch which is running on the same server Elastic Observability elastic-stack-monitoring	0	358	February 23, 2024
Failed to connect to backoff(elasticsearch(https://<es>)): Connection marked as failed because the onConnect callback failed: open /usr/share/apm-server/bin/ingest/pipeline/definition.json: no such file or directory APM nodejs , server	4	1179	November 2, 2022
APM server not connecting to ElasticSearch APM	3	1810	March 8, 2019
APM Server -> AWS Elasticsearch Service: "cannot retrieve the elasticsearch license: unauthorized access, could not connect to the xpack endpoint, verify your credentials" APM	7	5499	December 10, 2019

APM server can't access elasticsearch

Related topics