Hi All,
Recently we were testing uberagent (splunk agent ) for collecting metrics in citrix environment .Am able to send all the metrics from that agent to elasticsearch without any problem but i should disable xpack security to do that,what type of seettings should I enable in elasticsearch.yml to allow the third party agent to forward the logs
current elasticsearch.yml
looks like this
xpack.security.enabled: true
xpack.security.transport.filter.allow: my agent host ip
xpack.security.http.filter.allow: my agent host ip
Please anyone help me in fixing this issue.
Thanks in advance ,
Raj