Skip to content

Latest commit

 

History

History

filebeat

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
README.md
README.md
 
 
filebeat-template-8.json
filebeat-template-8.json
 
 
filebeat.yml
filebeat.yml
 
 

README.md

Elastic Enterprise Search Filebeat configuration

This directory contains Filebeat configuration to be used with Filebeat in order to ingest Enterprise Search log files into Elasticsearch.

This example configuration assumes Filebeat and Elasticsearch versions 8.x.

Installation

  1. Download Filebeat.

  2. Replace filebeat.yml file in the Filebeat install directory with the one in this directory.

  3. Copy filebeat-template-8.json from this directory into your Filebeat install directory.

  4. Customize filebeat.yml with the needed information

    • Elasticsearch hosts, username and password, or additional authentication mechanisms. Check Configure the Elasticsearch output in Filebeat reference for additional details.
    • Enterprise Search install directory.
    • Filebeat log directory.
    • Additional fields to be included in the log events.

  5. Run Filebeat setup assets.

  6. Start Filebeat.

Enterprise Search logs will be ingested into ent-search-logs-8 data stream in the configured Elasticsearch instance, and will be visible in the Observability / Logs section in Kibana.