I installed fleet server & kibana in a machine that has access to internet and installed elasticagent in Windows server that does not have access to internet. But when I try to add integration (osquerybeat) i find in the logs that elasticagent tries to connect to elastic artifacts directly without passing by fleet or kibana.
Version i installed
Elasticsearch, kibana, fleet & elasticagent all in 7.15.1
Is that a bug! Cause i can see also an open issue in the github
Air gapped networks are not supported yet in Fleet Beats and Elastic Agent capabilities | Fleet and Elastic Agent Guide [7.15] | Elastic. We have an open issue to change the URL for the artifact repo here [Fleet] Ability to configure agent.download.sourceURI in Kibana · Issue #100413 · elastic/kibana · GitHub. This will allow you to host an on-prem repo. Would that be a sufficient solution once its available?
Your suggestion of going through Kibana won't work in environments where the agents don't have access to Kibana. The agents do have access to Fleet Server, but sometimes Fleet Server also runs in an air gapped network. Is that the case for you as well?
Is this workaround works for Fleet-managed elasticagents?
If yes, which kibana parameter do i must change to allow elasticagents to download from local repository?
This feature is not supported yet in 7.15. The issue I linked is a future enhancement we are considering for a later release.
Many thanks for your support and your reactivity
Regards.
Thank you.
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.