I am using auditbeat version 7.5.2 and AWS opensearch based elasticsearch engine version 7.10.2
The connection to the elasticsearch is breaking with the following error:
connection marked as failed because the onConnect callback failed: cannot retrieve the elasticsearch license from the /_xpack endpoint, Auditbeat requires the default distribution of Elasticsearch. Please make the endpoint accessible to Auditbeat so it can verify the license.: unauthorized access, could not connect to the xpack endpoint, verify your credentials
I checked the endpoint, AWS doesn't allow that endpoint:
"Message": "Your request: '/_xpack' is not allowed."
I found that the licence check has been mendatory from beat version 7.13.*.
Why is this error happening with older version?
OpenSearch/OpenDistro are AWS run products and differ from the original Elasticsearch and Kibana products that Elastic builds and maintains. You may need to contact them directly for further assistance.
(This is an automated response from your friendly Elastic bot. Please report this post if you have any suggestions or concerns )
Please don't post pictures of text, logs or code. They are difficult to read, impossible to search and replicate (if it's code), and some people may not be even able to see them
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant
logo are trademarks of the
Apache Software Foundation
in the United States and/or other countries.
)
