6,392 questions
0
votes
0
answers
7
views
Logstash field is never shown after aggregation
I have logstash version 7.8.0
Can someone tell me why the aggregation below never shown THREAD_ID field into documents please ?
My field : thread_id is added in the end of aggregation ..
Sample.log:
...
- 39
0
votes
1
answer
14
views
Unable to retrieve version information from Elasticsearch nodes. security_exception
I just configuration elasticsearch & Kibana version 8.6.2 . However I don't access web interface Kibana: http://10.xx.xx.xx/app/home and here is the detailed log error
Log Kibana: Dec 13 09:56:29 ...
0
votes
0
answers
11
views
Elastic Search CCR Issue
I have two elastic search instances hosted on different aws regions and they both are secured via basic authentication. Is there any way for enabling Cross Cluster replication between both of them I ...
0
votes
1
answer
20
views
FSCrawler not continuing job
I'm using FSCrawler 2.10 to crawl trough hundreds of PDF files, and with Tessarect OCR extract text from scanned documents/images.
It works, successfully configured everything, however the folder I am ...
0
votes
1
answer
12
views
Some pre built rules in Kibana are failed
I activate all rules in Kibana. But some of rules are in failed status. When I open the rule this error shown:
An error occurred during rule execution: message: "...
0
votes
0
answers
10
views
Kibana "drilldown to discover" with time layers?
I have bar graphs in Kibana dashboard panels that have multiple layers from different time ranges. My "drilldowns to discover" stops working when I have these extra layers.
Is there a way to ...
0
votes
1
answer
15
views
Match records where array field of objects contain matches possibly on different records
Suppose I have an array field that may look like:
{
"tags": [
{ "type": "A", "name": "something" },
{ "type": "B", "...
- 87.9k
0
votes
0
answers
12
views
Can i use kibana users and role management without xpack enabled on elasticseaech nodes?
I'm running elasticsearch on 3 nodes with kibana on a seperate node. The OS is ubuntu.
version 8.11.1
I want to eliminate the headache of renewing the certificate on the servers thus i created a 2 LB ...
- 1
0
votes
0
answers
14
views
I am trying to connect 2 systems EAA nodes and expecting all the events get synch and displayed on to kibana1 and kibana2
I have connected 2 VApps which makes it as 2DC's system.
On DC1 I have added and Installed Elastic Search and EAA nodes and installed them, same goes with DC2. Now I want all the events from DC2 in ...
0
votes
0
answers
31
views
Create a task with observable in thehive 4 triggered by kibana
Description: I have a single node ELK 7 with some beats and endpoint (Linux and windows). So I have logs of some servers in ELK. Base on SOAR, I install TheHive, MISP and Cortex to implement SOAR. In ...
0
votes
0
answers
12
views
New Elasticsearch .Net client does not index GeoLocation objects as geo_point type in index
We are currently in the process of migrating away from NEST given the new .Net Client seems to be the way to go going forwards however, the whole process has been nothing but painful so far.
The ...
- 4,234
0
votes
0
answers
22
views
How to show a non array key/value object in a kibana graph?
I'm trying to create a dashboard in Kibana to graphicaly show "the most used query parameters", but I cannot get this working.
I have an index that contains request logs data, and in each ...
- 3,747
0
votes
0
answers
21
views
Use own IPFIX template fields within Kibana
I have an Elasticflow setup. I followed the instructions from here:
https://github.com/elastiflow/ElastiFlow-Tools/tree/main/docker_install
I'm sending IPFIX packets to the flow-collector.
ipfix.ie....
- 61
0
votes
0
answers
31
views
How to create advanced visualization in Kibana Dashboard
I'm new to Elastic/Kibana. Most example visualizations I've seen are relatively simple. I'm trying to create a table that's relatively complex.
My input data is available as a Data View in the below ...
- 1,639
1
vote
1
answer
69
views
Kibana Query for Message that contains ":"
I have the following documents in Kibana
document1: LogStatus ApplicationA:X ApplicationB:O ApplicationC:O
document2: LogStatus ApplicationA:O ApplicationB:O ApplicationC:O
document3: LogStatus ...
- 13
0
votes
1
answer
24
views
Elasticsearch lightweight monitors unable to use params
I have a lightweight monitor defined in my @elastic/synthetics project defined as follow:
heartbeat.monitors:
- type: http
name: "XXXXX"
id: "XXXX"
enabled: true
urls: ...
- 1,630
0
votes
2
answers
46
views
How to get the size of raw logs ingested into Elastic?
I want to determine the size of raw logs ingested into Elastic. Is it possible to do this directly in Elastic, or are there any third-party tools that can help? Any ideas on how to achieve this?
...
0
votes
2
answers
29
views
Search inside an array object in Elastic Search
Is it possible to search without using nested fields, achieving exact matches within the same object in an array in ElasticSearch?
I can't change the structure of the object.
For example:
{
"...
0
votes
0
answers
10
views
Getting aggregation response as number for string typed values in ElasticSearch
I ingested the payload into ES using below command.
curl -X POST "http://localhost:9200/demo3/_doc/1" -H 'Content-Type: application/json' -d '{
"longInt": 87366795768497144035, ...
- 1
0
votes
1
answer
19
views
elasticsearch - reindex only specified data in field
I'm working with reindex but only with specified data in field.
I have field "plugin" and I need to create index from only part of "docplugin"
I created query and it is running ...
- 63
0
votes
0
answers
13
views
How to use Kibana export API?
I am using Kibana export API to get the rule in dev tools, but it's throwing error.
{
"statusCode": 400,
"error": "Bad Request",
"message": "Trying ...
- 1,422
0
votes
0
answers
14
views
Kibana Dashboards controls not interactive
I've couple of dashboards in my kibana space. For both the dashboards, using controls [optionlist], created a filter using one field in my index.
Also using links, formed horizontal menu / tabs to ...
- 3
0
votes
0
answers
15
views
GraphQL Connector Object to ID mapping rookie question
I'm working on setting up an Elasticsearch GraphQL connector from Kibana UI. I am trying to index a small test data and I'm stuck on "Object to ID mapping".
The test query ("GraphQL ...
1
vote
0
answers
54
views
Metricbeat can't connect to Kibana - "Connection refused" on http://localhost:5601
I've been trying to configure Metricbeat with my Elastic Stack setup using Docker, but I keep getting an error where Metricbeat can't connect to Kibana. Here's the error log:
{"log.level":&...
- 11
0
votes
0
answers
22
views
Vega visualization showing error for path mark in Kibana (Kibana v8.15.2)
I am using Kibana v8.15.2, and I’m trying to create a Vega visualization. Visualization rendering correct. However, I am facing the following error:
My Vega spec is:
{
"$schema": "...
0
votes
0
answers
31
views
How to increase/decrease Bar sizes in bar chart in Kibana
Im looking for bar chart customization in Kibana;
Right now the bars are too close and get auto adjust. while I want to make them thinner and add spaces between the bars.
Anyone please guide.
I tried ...
0
votes
0
answers
98
views
Elastic search with python script SSL error
I get this error when running my python script.
elastic_transport.TlsError: TLS error caused by: TlsError(TLS error caused by: SSLError([SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: CA ...
- 31
0
votes
2
answers
239
views
Elasticsearch SSL setup [xpack.security.transport.ssl] - cannot read configured [PKCS12] keystore (as a truststore)
I'm trying to setup Kibanna on elasticsearch, I'm on debain 12 and elasticsearch 8.15.0.
I ran the following to generate a ca with a passphrase.
/usr/share/elasticsearch/bin/elasticsearch-certutil ca
...
- 33.6k
0
votes
1
answer
91
views
Unable to Access Kibana on Ubuntu Server 20.04 - Port 5601 Listening but No Response
As a part of Azure SIEM Setup, I'm currently setting up Kibana VM on an Ubuntu 20.04 server as part of my ELK stack for monitoring. However, despite the Kibana service running successfully, I am ...
- 5,358
0
votes
0
answers
15
views
Possible to access sibling aggregation value within sibling child aggregation?
I have a test pipeline that is triggered for every code commit. The code commit has a unique "revision" and you can determine commit-order based on the revision's associated "...
- 153
0
votes
2
answers
61
views
Quarkus GRPC OpenTelemetry multiple transactions
Im using Quarkus together with io.quarkus:quarkus-opentelemetry:3.15.0. For log collection we are using Elastic and Cabana.
I have been doing some performance tests and I can see 2 types of ...
- 349
0
votes
1
answer
165
views
Configuration to ElasticSearch and Serilog dont work in .NET 8
I have configured log sending to ElasticSearch/Kibana with .NET 8, using the following packages:
Serilog.AspNetCore
Serilog.Formatting.Elasticsearch
Serilog.Sinks.Async
Serilog.Sinks.Elasticsearch
...
- 11
0
votes
0
answers
34
views
kibana in air-gapped/ restrict environment solution
I have successfully deployed an ECE cluster, including APM, Kibana, ML, and Elasticsearch (master and data tiers). I can access Kibana via the endpoint, and it is functioning correctly. However, this ...
0
votes
0
answers
35
views
Cannot access kibana feature
I have kibana 8.14 configured locally, and I am trying to access the visualize library page but it's blank and this error is printed in the dev console:
TypeError: Cannot read properties of undefined (...
0
votes
0
answers
17
views
Graph hits in Kibana from a complex ElasticSearch query
I have a complex ES query which runs as expected in the Dev Tool, and I want to graph the number of hits returned by this query, per day (day is a date field in the document).
The actual query shouldn'...
- 1,994
1
vote
0
answers
27
views
Fluent-bit parse only first level keys in JSON
Is it possible in Fluent-bit parse JSON message keys but only first level?
For example message:
{"key1": "value1", "key2": "value2", "data": {"...
- 723
0
votes
0
answers
11
views
Kibana is unable to connect to Elasticsearch
Kibana is unable to connect to Elasticsearch 7.1.5
We get the following error sometimes on the Kibana dashboard console, but sometimes it just works fine
http://<myip>:5602/app/dev_tools/#/...
- 1,271
0
votes
0
answers
24
views
Kibana logs in a spring boot API
I'm refactoring an api that logs absolutely everything to kibana and some code repeats in the logic of all my endpoints. There is something I can do that works as a exception or something like that to ...
0
votes
0
answers
18
views
Apache redirect url to another url passing parameters
In our use case we want to simplify very complex urls to simpler ones through Apache.
We have a GIS system which we want to link to some Kibana dashboards. We want that when someone clicks on a ...
- 2,513
0
votes
0
answers
34
views
Apache reverse proxy to kibana dashboard with anonymous authentication redirects to login
I have a Kibana server where anonymous authentication is enabled.
Inside this server I built a dashboard which I want to be accessible by everyone. This dashboard is inside a space where only kibana ...
- 2,513
0
votes
1
answer
18
views
How to view the different values in a geopoint to a Data table in Kibana Elasticsearch Maps
I have different values in a single geo point in Kibana Elasticsearch map.
is it possible to get that values in table, with columns as same as from Tooltip, on a Dashboard??
In this image , I am ...
0
votes
0
answers
15
views
Java Application REST Transactions are not showing in kibana,Elastic APM
My application is java(Spring boot) which REST API transaction. When configured it to elastic APM..I can see metrics. But can not see REST API transaction to kibana/elastic search?
How can it get ...
- 31
1
vote
1
answer
87
views
I want to change kibana logo in version 8.15 with some other logo and change the text too
I want to change elasticsearch logo from my kibana Iframe or atleast hide that logo from I frame and instead of loading elastic, I want to show some custom message
I have make changes in template.js ...
0
votes
1
answer
33
views
How to display mysql table (data) on kibana in table format
I need to visualize MySQL data for reporting from production servers in Kibana. Is it possible to display MySQL data in a table format on Kibana?
If so, could you please explain how to do it?
I ...
0
votes
1
answer
131
views
Kibana use "kibana" user instead "kibana_system"
I installed Elastic + Kibana, both 8.15 version.
When i trying to login as "elastic" user, im not able to do any in UI Kibana.
Elastic logs shows this:
[INFO ][o.e.x.s.a.RealmsAuthenticator] ...
- 23
0
votes
0
answers
20
views
Integrate LDAP with elasticsearch it's works but once i add role_mapping attribute, my elasticsearch container goes down
cluster.name: docker-cluster
network.host: 0.0.0.0
http.port: 9200
xpack.license.self_generated.type: trial
xpack.security.enabled: true
xpack:
security:
authc:
realms:
ldap:
...
- 1
0
votes
0
answers
19
views
Painless script for finding Nth instance in log message
In Kibana we have a field called log message, we have entire message, to trim that trying to write a script for the same
Please find below the pipeline to extract first 30 words from the message:
PUT ...
0
votes
1
answer
83
views
Elasticsearch to Slack integration: Pulling specific fields
I am currently trying to develop a slack channel for the use of alerting whenever I have a specific set of alerts that come in. I have been successful in getting a notification sent to the channel ...
0
votes
0
answers
17
views
Create Visualization From Elasticsearch Aggregation Query In Kibana
I'm using elasticsearch query to calculate increase of failed query operations (ignoring any decreases)
POST /index_pattern/_search
{
"size": 0,
"query": {
"bool":...
- 1
0
votes
0
answers
62
views
How to create graph in kibana to visualize apis and their response times with respect to timestamps?
I have logs containing fields api and their response_time and every log contains timestamp associated with it like when it is generated. Now i want to generate a graph to view the timestamps on X-axis ...
- 1