Dear Community,
I’m deploying Elastic Stack on one main (local) site and two remote sites. Each site has an Elastic cluster with 3 Elasticsearch nodes. Each site has a Fleet server deployed but only the main (local) site has Kibana. I'm using remote cluster connections for cross-cluster search. I’ve attached a figure to explain my configuration.
I’m using SSL/TLS everywhere with separate CAs for every site.
What I aim to achieve:
- I want agents to use their site Fleet server and site Elastic cluster without deploying Kibana instances on remote sites.
- I want to be able to manage all clients from the Kibana instance deployed on the main (local) site.
My questions are the following:
- How should I enroll Fleet servers and agents on the remote sites without local Kibana instances?
- What TLS/SSL settings should I use including which certificates I should copy to the remote Fleet servers and agents?
