I have signed up for an Elastic Cloud trial and I am trying to ship them directly to my Cloud ID instance. However, I am not sure where the error is, I have been checking the logs and no logs appear when it fails to start. I know it's a configuration issue because I can ship them to my self-hosted logstash instance just fine.
Note that i am using Auditbeat-8.0.0, and this was installed via DMG, not from a tarball/homebrew.
After fiddling with the configs, I decided to download the tarball and use my cloud.id & cloud.auth settings and I was able to send the logs to Elastic Cloud.
It appears that I had to use the elastic superuser rather than the user I had created.
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.