hi,
I set kibana and workplace search ssl and loaded index to workplace search by logstash.
Then error message occurred about ssl certification.
elasticsearch has phrase like below, but could't find about workplace search
output {
elasticsearch {
hosts => ["https://...]
cacert => '/etc/logstash/config/certs/ca.crt'
}
}
how can I send data to workplace search through ssl?
this is error log
[2023-04-11T17:45:18,879][ERROR][logstash.javapipeline ][main] Pipeline error {:pipeline_id=>"main", :exception=>#<LogStash::ConfigurationError: Failed to connect to Workplace Search. certificate verify failed>, :backtrace=>["/home/search/logstash-8.5.3/vendor/bundle/jruby/2.6.0/gems/logstash-integration-elastic_enterprise_search-2.2.1/lib/logstash/outputs/elastic_workplace_search.rb:49:in `register'", "org/logstash/config/ir/compiler/AbstractOutputDelegatorExt.java:68:in `register'", "/home/search/logstash-8.5.3/logstash-core/lib/logstash/java_pipeline.rb:234:in `block in register_plugins'", "org/jruby/RubyArray.java:1865:in `each'", "/home/search/logstash-8.5.3/logstash-core/lib/logstash/java_pipeline.rb:233:in `register_plugins'", "/home/search/logstash-8.5.3/logstash-core/lib/logstash/java_pipeline.rb:600:in `maybe_setup_out_plugins'", "/home/search/logstash-8.5.3/logstash-core/lib/logstash/java_pipeline.rb:246:in `start_workers'", "/home/search/logstash-8.5.3/logstash-core/lib/logstash/java_pipeline.rb:191:in `run'", "/home/search/logstash-8.5.3/logstash-core/lib/logstash/java_pipeline.rb:143:in `block in start'"], "pipeline.sources"=>["/home/search/logstash-8.5.3/conf.d/km/km_knwl_list_ws.conf"], :thread=>"#<Thread:0x5da17cd2 run>"}
[2023-04-11T17:45:18,880][INFO ][logstash.javapipeline ][main] Pipeline terminated {"pipeline.id"=>"main"}
[2023-04-11T17:45:18,894][ERROR][logstash.agent ] Failed to execute action {:id=>:main, :action_type=>LogStash::ConvergeResult::FailedAction, :message=>"Could not execute action: PipelineAction::Create<main>, action_result: false", :backtrace=>nil}
[2023-04-11T17:45:22,022][INFO ][logstash.javapipeline ] Pipeline `main` is configured with `pipeline.ecs_compatibility: v8` setting. All plugins in this pipeline will default to `ecs_compatibility => v8` unless explicitly configured otherwise.
[2023-04-11T17:45:22,024][WARN ][org.logstash.execution.AbstractPipelineExt] Metric registration error: `input_throughput` could not be registered in namespace `[:stats, :pipelines, :main, :flow]`
[2023-04-11T17:45:22,024][WARN ][org.logstash.execution.AbstractPipelineExt] Metric registration error: `filter_throughput` could not be registered in namespace `[:stats, :pipelines, :main, :flow]`
[2023-04-11T17:45:22,024][WARN ][org.logstash.execution.AbstractPipelineExt] Metric registration error: `output_throughput` could not be registered in namespace `[:stats, :pipelines, :main, :flow]`
[2023-04-11T17:45:22,024][WARN ][org.logstash.execution.AbstractPipelineExt] Metric registration error: `queue_backpressure` could not be registered in namespace `[:stats, :pipelines, :main, :flow]`
[2023-04-11T17:45:22,024][WARN ][org.logstash.execution.AbstractPipelineExt] Metric registration error: `worker_concurrency` could not be registered in namespace `[:stats, :pipelines, :main, :flow]`
and this is my logstash.conf
# KMDEV CoP input index to wsh
input {
elasticsearch {
hosts => ["http://192.168.150.140:9200"]
user => "elastic"
password => "ksearch"
index => "km_knwl_list_attached"
query => '{"query":{"match_all":{}}}'
# query => '{
# "query":{
# "range":{
# "v_inputdate":{
# "gte":"20160101000000",
# "lt":"20240101000000"
# }
# }
# }
# }'
}
}
filter {
date {
match => ["v_inputdate", "yyyyMMddHHmmss","ISO8601"]
}
}
output {
stdout { codec => "dots"}
# elasticsearch {
# hosts => ["http://192.168.150.140:9200"]
# user => "elastic"
# password => "ksearch"
# index => "km_cop_list_attach2"
# document_id => "%{docid}"
# pipeline => "kmdev_cop_attach"
# }
elastic_workplace_search {
url => "https://192.168.150.140:3002"
access_token => "9rzcot34tuymntzenhpnphbu"
source => "642915ac6b0b6d963951e376"
document_id => "%{docid}"
# ssl => "true"
# cacert => '/home/search/kibana-8.5.3/config/certs/elasticsearch-ca.pem'
}
}
thank you for you help.