Starting kibana with Elasticsearch Coordinating with loadbalanced elasticsearch


I'm building a new a elasticsearch,kibana,logstash cluster.

I was able to create a 3 node elasticsearch cluster with x-pack security.

I set the password to all my default users in elasticsearch.

I installed an elasticsearch service on my kibana server and set the followings to coordinate the kibana:
node.master: false false
node.ingest: false false true true certificate /etc/elasticsearch/elastic-certificates.p12 /etc/elasticsearch/elastic-certificates.p12
discovery.seed_hosts: ["elk-es-infra-01", "elk-es-infra-02", "elk-es-infra-03"] localhost
http.port: 9200
transport.tcp.port: 9300
path.logs: /var/log/elasticsearch elk-infra

My ES cluster configuration elk-infra es-node-01 /elk/elasticsearch/data
path.logs: /elk/elasticsearch/log
http.port: 9200
discovery.seed_hosts: ["elk-es-infra-01", "elk-es-infra-02", "elk-es-infra-03"]
cluster.initial_master_nodes: ["es-node-01", "es-node-02", "es-node-03"] true true certificate /etc/elasticsearch/elastic-certificates.p12 /etc/elasticsearch/elastic-certificates.p12

My kibana configuration
server.port: 5601 "" "elk-ki-infra-01"
elasticsearch.username: "kibana"
elasticsearch.password: "notforpublic"
pid.file: /var/run/
logging.dest: /var/log/kibana/kibana.log
logging.verbose: true

My kibana service starts up and exit with the last line of the log:
{"type":"log","@timestamp":"2020-01-30T14:34:31Z","tags":["debug","root"],"pid":3605,"message":"shutting root down"}

Warnings in the kibana log but no error:
{"type":"log","@timestamp":"2020-01-30T14:34:26Z","tags":["warning","plugins","security","config"],"pid":3605,"message":"Generating a random key for To prevent sessions from being invalidated on restart, please set in kibana.yml"}
{"type":"log","@timestamp":"2020-01-30T14:34:26Z","tags":["warning","plugins","security","config"],"pid":3605,"message":"Session cookies will be transmitted over insecure connections. This is not recommended."}
{"type":"log","@timestamp":"2020-01-30T14:34:29Z","tags":["warning","legacy-plugins"],"pid":3605,"path":"/usr/share/kibana/src/legacy/core_plugins/visualizations","message":"Skipping non-plugin directory at /usr/share/kibana/src/legacy/core_plugins/visualizations"}

Everything is on Centos, no firewall between them.
I can do a curl -XGET 'http://localhost:9200/_cluster/health?pretty' with kibana user and password working without a problem.

Could you please help me what did I miss ?

@LeeDr can I please get some help with this? Thanks!

1 Like

I found it, it was not visible in the debug kibana.log only syslog

Jan 30 16:24:50 elk-ki-infra-01 kibana[3689]: FATAL Error: EACCES: permission denied, open '/var/run/'

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.