You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: x-pack/docs/en/security/securing-communications/security-basic-setup-https.asciidoc
+21-10
Original file line number
Diff line number
Diff line change
@@ -470,15 +470,15 @@ management.
470
470
===== Configure {metricbeat} to use TLS
471
471
472
472
Before starting {metricbeat}, you configure the connections to {es} and
473
-
Kibana. You can configure authentication to send data to your secured cluster
473
+
{kib}. You can configure authentication to send data to your secured cluster
474
474
using basic authentication, API key authentication, or Public Key
475
475
Infrastructure (PKI) certificates.
476
476
477
477
The following instructions use the credentials for the `metricbeat_writer`
478
478
and `metricbeat_setup` users that you created. If you need a greater level of
479
479
security, we recommend using PKI certificates.
480
480
481
-
After configuring connections to Elasticsearch and Kibana, you'll enable the
481
+
After configuring connections to {es} and {kib}, you'll enable the
482
482
`elasticsearch-xpack` module and configure that module to use HTTPS.
483
483
484
484
WARNING: In production environments, we strongly recommend using a separate
@@ -491,10 +491,10 @@ activities from impacting the performance of your production cluster.
491
491
`/kibana` directory that you created when <<encrypt-http-communication,encrypting HTTP client communications for {es}>>.
492
492
493
493
. Copy the `elasticsearch-ca.pem` certificate to the directory where you
494
-
installed Metricbeat.
494
+
installed {metricbeat}.
495
495
496
496
. Open the `metricbeat.yml` configuration file and configure the connection
497
-
to Elasticsearch.
497
+
to {es}.
498
498
+
499
499
Under `output.elasticsearch`, specify the following fields:
500
500
+
@@ -521,9 +521,10 @@ output.elasticsearch:
521
521
522
522
`password`:: Password for the indicated `username`.
523
523
524
-
`certificate_authorities`:: Indicates the path to your trusted CA.
524
+
`certificate_authorities`:: Indicates the path to the local `.pem` file that
525
+
contains your CA's certificate.
525
526
526
-
. Configure the connection to Kibana.
527
+
. Configure the connection to {kib}.
527
528
+
528
529
Under `setup.kibana`, specify the following fields:
529
530
+
@@ -536,10 +537,10 @@ setup.kibana
536
537
password: "p@ssw0rd"
537
538
----
538
539
539
-
`hosts`:: The URLs of the Elasticsearch instances to use for all your
540
+
`hosts`:: The URLs of the {es} instances to use for all your
540
541
queries. Ensure that you include `https` in the URL.
541
542
542
-
`username`:: Name of the user with privileges required to set up dashboards in Kibana. The `metricbeat_setup` user that you created has these privileges.
543
+
`username`:: Name of the user with privileges required to set up dashboards in {kib}. The `metricbeat_setup` user that you created has these privileges.
543
544
544
545
`password`:: Password for the indicated `username`.
545
546
@@ -550,7 +551,8 @@ setup.kibana
550
551
./metricbeat modules enable elasticsearch-xpack
551
552
----
552
553
553
-
. Modify the `elasticsearch-xpack` module to use HTTPS.
554
+
. Modify the `elasticsearch-xpack` module to use HTTPS. This module collects
555
+
metrics about {es}.
554
556
+
555
557
Open `/modules.d/elasticsearch-xpack.yml` and specify the following fields:
556
558
+
@@ -562,9 +564,15 @@ Open `/modules.d/elasticsearch-xpack.yml` and specify the following fields:
562
564
hosts: ["https://<your_elasticsearch_host>:9200"]
563
565
username: "remote_monitoring_user"
564
566
password: "<password>"
567
+
ssl: <1>
568
+
enabled: true
569
+
certificate_authorities: ["elasticsearch-ca.pem"]
570
+
verification_mode: "certificate"
565
571
----
572
+
<1> Configuring SSL is required when monitoring a node with encrypted traffic.
573
+
See {metricbeat-ref}/configuration-ssl.html[Configure SSL for {metricbeat}].
566
574
567
-
`hosts`:: Specifies the host where your Elasticsearch cluster is running.
575
+
`hosts`:: Specifies the host where your {es} cluster is running.
568
576
Ensure that you include `https` in the URL.
569
577
570
578
`username`:: Name of the user with privileges to collect metric data. The
@@ -573,6 +581,9 @@ Open `/modules.d/elasticsearch-xpack.yml` and specify the following fields:
573
581
574
582
`password`:: Password for the indicated `username`.
575
583
584
+
`certificate_authorities`:: Indicates the path to the local `.pem` file that
585
+
contains your CA's certificate.
586
+
576
587
. If you want to use the predefined assets for parsing, indexing, and
577
588
visualizing your data, run the following command to load these assets:
0 commit comments