How to get elaticsearch access logs

Hi Team,

I am using elaticsearch 5.1.1 I would like to track my elasticsearch access logs. I tried with Shield but it is not supported for ES 5.X. Please give some suggestions how to get my elasticsearch access logs in my /var/log/elasticsearch/ path.

ES version: 5.1.1
JDK: 1.8
OS: Ubuntu 16.04



What you require here is Sheild which is now called Security. This comes with X-Pack.
The auditing you desire to enable can be found here:

If I misunderstood the query and you actually want to ingest your Elasticsearch logs into Elasticsearch, do confirm.

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.