Connection between Elastic Agent (on local machine) and Elasticsearch (on GCP)

stephenb · July 16, 2025, 5:04pm

Hi @Nghia_Vu Welcome to the community

Well that is the correct approach

Since this is just a study project you could enroll the Agent with the --insecure flag so certificate validation is not performed. Perhaps try that

--insecure

Allow the Elastic Agent to connect to Fleet Server over insecure connections. This setting is required in the following situations:

When connecting to an HTTP server. The API keys are sent in clear text.

When connecting to an HTTPs server and the certificate chain cannot be verified. The content is encrypted, but the certificate is not verified.

When using self-signed certificates generated by Elastic Agent.

We strongly recommend that you use a secure connection.

You could also look through this thread

Topic		Replies	Views
Cannot Enroll Elastic Agent to Fleet hosted on Elastic Cloud Enterprise Elastic Cloud Enterprise (ECE)	14	2046	September 20, 2020
Deploy elastic-agent with cert? Elasticsearch elastic-agent	6	2252	October 2, 2020
Elasic-agent is online but don't send data Elastic Security elastic-agent	13	5626	November 4, 2022
X509 certificate signed by unknown authority error, even with --insecure flag Elastic Agent	3	56	April 24, 2025
Fleet agent - x509: certificate signed by unknown authority Beats fleet	2	2474	March 25, 2022

Connection between Elastic Agent (on local machine) and Elasticsearch (on GCP)

Related topics