Hi team,
As per elastic docs at
vault audit enable socket address=${ELASTIC_AGENT_IP}:9007 socket_type=tcp
In the place of ELASTIC_AGENT_IP I placed Elasticsearch IP and port as 9200 in this case getting an error as
* audit backend failed test message: event.(SocketSink).Process: error writing to socket: 2 errors occurred:
* event.(SocketSink).write: connection error: event.(SocketSink).connect: error connecting to "tcp" address "x.x.x.x:9200": dial tcp x.x.x.x:9200: i/o timeout
* event.(SocketSink).reconnect: error connecting: event.(SocketSink).connect: error connecting to "tcp" address "x.x.x.x:9200": dial tcp x.x.x.x:9200: i/o timeout
here, Elasticsearch running on https with x-pack security username and password then, how to pass this command.
vault audit enable socket address=${ELASTIC_AGENT_IP}:9007 socket_type=tcp
with certification verify false and username password.