Hi !
I'm setting up an ELK server in my company to receive connection logs.
My server is ready and operational. I still have one machine to do, but I confess I'm stuck.
I need to get the logs from the ESXI server, and I've tried to do this by installing filebeat through the ssh, but it's not working, i had few erros :
./filebeat -e
"Operation not permitted"
so i tried :
esxcli system settings advanced set -o /User/execInstalledOnly -i 0
./filebeat -e
but i get :
killed
So I'm looking at going through the ESXI server's Syslog.
But I'd like to know if it's possible to set up a filebeat on ESXI and if so, how do I go about it?
thanks