Service Unavailable for [audit]beat

Attempting to install an audibeat on a Linux End Point - EP. But it eludes me why it fails to output to my cluster.

2020-02-28T11:07:55.196+0100 DEBUG [elasticsearch] elasticsearch/client.go:737 Ping request failed with: Get https://: Service Unavailable

See Issue tracked further in Auditbeat discussion fora


I'm puzzled by this, user attempted with has a role which got create_index,index,write on auditbeat-* same role which work for another user working for Windows auditbeats.

'Service unavailable' wouldn't that possible imply some kind of permission issue on elastic side, and if how to get details logged somehow?

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.