hello,
I posted a topic about Kibana disabled to login after x-pack security turned on. i resolved that issue and the topic url is below.
after that, elasticsearch and kibana look fine, but below errors were started on logstash.
[2018-10-07T18:34:49,538][WARN ][logstash.outputs.elasticsearch] Attempted to resurrect connection to dead ES instance, but got an error. {:url=>"http://127.0.0.1:9200/", :error_type=>LogStash::Outputs::Elasticsearch::HttpClient::Pool::BadResponseCodeError, :error=>"Got response code '401' contacting Elasticsearch at URL 'http://127.0.0.1:9200/'"}
[2018-10-07T18:34:49,654][INFO ][logstash.licensechecker.licensereader] Running health check to see if an Elasticsearch connection is working {:healthcheck_url=>http://127.0.0.1:9200/, :path=>"/"}
[2018-10-07T18:34:49,658][WARN ][logstash.licensechecker.licensereader] Attempted to resurrect connection to dead ES instance, but got an error. {:url=>"http://127.0.0.1:9200/", :error_type=>LogStash::Outputs::Elasticsearch::HttpClient::Pool::BadResponseCodeError, :error=>"Got response code '401' contacting Elasticsearch at URL 'http://127.0.0.1:9200/'"}
what i did on my logstash are below.
I created keystore for logstash and set ES_USER and ES_PWD there. then, add below line in the .conf.
user => "${ES_USER}"
password => "${ES_PWD}"
my elasticsearch and kibana are currently up without any errors. should i check 'role' with the logstash account username?
Please advise what i missed.
Thank you!