Hi Good Day,
I have setup a Ubuntu with ELK installed. Wants to receive logs from Windows 10 machine.
The ELK and the Windows currently on same network since testing. Have enabled xpack.security to true. Get auto generated password from ELK. Now, when I wants to connect from my Windows 10 machine to Ubuntu ELK, it's keep failed. Showing the ELK:9200 target actively refused.
have removed comment on Kibana and Elaticsearch.output and pointing it to ELK server's IP.
For the authentication credentials, I have put username and password for "elastic" which I've generated in ELK when I enabled "xpack.security.enabled: true".
Does this causing the issue?
Error message from powershell:
Exiting: error connecting to Kibana: fail to get the kibana version: HTTP GET request to http://:5601/api/status fails: fail to execute the HTTP GET request: Get "http://:5601/api/status": dial tcp :5601: connectex: No connection could be made because the target machine actively refused it.. Response: .
My winlogbeat.yml:
====Dashboards====
setup.dashboards.enabled: true
====Kibana====
setup.kibana:
host: "ELK IP: 5601"
----Elasticsearch Output----
output.elasticsearch:
hosts: ["ELK IP:9200"]
Installed winlogbeat as service. Started service.
Powershell (run as admin)
.\winlogbeat.exe setup (after this command execute the error message was out/ target machine actively refused)