I want to use Logstash, ElasticSearch and Kibana. To do so I installed Logstash, ElasticSearch and Kibana in my linux environment with 6.5.1 version.
In elasticsearch 6.5.1 version xpack comes along with the installer. So xpack separate installation for elasticsearch was not needed for me. By default xpack license comes as basic. Although I did the xpack security configuration in elasticsearch.yml file as follows -
So this mush is my elasticsearch configuration.
For kibana I have enabled the elasticsearch build in user details in kibana.yml and restarted kibana.
elasticserach.username : "user"
elasticserach.password: "pass"
As I want to have a login page only for Kibana but not for Elasticsearch.
I restarted Kibana server, the Kibana doesn't prompt for any username or password, directly the home page loaded.
Am I missing any other setting in configuration files?
Can clarify what's wrong in the steps I did? Is it the license got to do anything to do with this ?
I have upgraded Logstash, Elastic Search and Kibana from 6.5.1 to 6.8 in order to have login functionality on kibana.
Now connection between Kibana and Elastic search is working as expected.
But now the issue appeared with Logstash and Elastic search connection.
This the error I could see in logstash-plain.log
[2019-07-18T03:49:32,140][INFO ][logstash.runner ] Starting Logstash {"logstash.version"=>"6.8.0"}
[2019-07-18T03:49:35,957][ERROR][logstash.licensechecker.licensereader] Unable to retrieve license information from license server {:message=>"Got response code '401' contacting Elasticsearch at URL 'https://lxddv112.test.intranet:9200/_xpack'"}
[2019-07-18T03:49:36,022][ERROR][logstash.monitoring.internalpipelinesource] Failed to fetch X-Pack information from Elasticsearch. This is likely due to failure to reach a live Elasticsearch cluster.
One more point I would like to mention my logstash, elastic search and kibana are sharing the same jvm.
Am I missing any other setting in configuration files?
It is recommended that the new user must have the required permission to write on the indices in elastic search.
Use this username / password in logstash.yml file
Change the default elastic search username and password with the new one.
Update logstash-es.conf file as below -
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant
logo are trademarks of the
Apache Software Foundation
in the United States and/or other countries.