Winlogbeat Index created but nothing in Discover

uklipse · September 8, 2018, 9:14pm

Hi, I had Elasticsearch installed on a Windows server but moved it to Ubuntu. I am now sending Windows logs to Elasticsearch on Ubuntu. Under Management > Index Management I see the winlogbeat index created and it grows but I don't see anything under Discover or Visualize. I don't have the winlogbeat index listed but do have auditbeat and metricbeat.

When ES was on the Windows machine and I sent the logs to itself, I did see the logs under the Discover tab.

Any ideas why the index isn't showing?

Thanks

uklipse · September 8, 2018, 9:22pm

Nevermind, I didn't create the initial index pattern. After that, I can see the logs now.

system · October 6, 2018, 9:22pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
No data log in Discover section Elasticsearch	2	181	November 15, 2022
Logs don't show up on kibana Elasticsearch	9	294	November 26, 2023
No matching indices found: No indices match pattern "winlogbeat-*" Elasticsearch	15	2966	February 2, 2021
Winlogbeat Kibana data not showing Beats winlogbeat	1	417	July 21, 2022
Kibana Not seeing Indexes Kibana	9	4083	May 25, 2018

Winlogbeat Index created but nothing in Discover

Related Topics