Hi @RomanKau which version of Elasticsearch, Kibana and Filebeat are you running?
Based on the links you posted and your config I'm assuming it's 8.0 and you're running everything locally.
On 8.0 TLS is enabled by default, so you need to set the ca_trusted_fingerprint on your output configuration as well as enable SSL:
output.elasticsearch:
hosts: ["https://myEShost:9200"]
username: "filebeat_internal"
password: "YOUR_PASSWORD"
ssl:
enabled: true
ca_trusted_fingerprint: "b9a10bbe64ee9826abeda6546fc988c8bf798b41957c33d05db736716513dc9c"
When you start Elasticsearch for the first time it will log the value for ca_trusted_fingerprint.
If the auto-configuration process has already completed, you can follow those steps to get the CA fingerprint