As mentioned, I had an error at 17:48 related to missing CA file. Here is a follow up 10 minute video that shows better way to correct the situation: th-cam.com/video/reupgV-A3NA/w-d-xo.html Written Summary Of Video Here: elasticsearch.evermight.com/setup-fleet-server/
Awesome Videos! Question for Multinode Elastic Cluster in regards to the Fleet Server. Does the Fleet Sever only need to know of the CA-Node in "--fleet-server-es" in case of a failover or do ineed to specify all of my nodes in some other configuration? Best regards!
Thank you for creating this tutorial. I've a 3-node elasticsearch cluster and i would like to add elastic fleet server for this cluster using logstash as elasticseash output type currently does not support connectivity to a remote Elasticsearch cluster but logstash does. Do you have any plan to create another video for logstash as a output type?
Thanks for your message. Yes I was able to do an experimental version with logstash as output. I want to create a video to document what did but just been too busy. I remember it was difficult because I spoke with the elasticsearch team and they acknowledged there were some bugs and so I came up with a workaround for it. Will try to make video when I have the time.
@@evermightsystems Looking forward to your video. I ended up by creating a NGINX load balancer which redirects the traffics to my elasticsearch cluster nodes. Then Fleet output settings allowed me to specify load balancer URL with 9200 port.
Very informatic !! Thanks .Please make fleet agent installation for windows server IIS or share docs will helps us a lot to manage IIS web servers log integration.
Thanks for message. Your fleet server needs an elastic agent to make a fleet server. Your fleet server should have the public certs of your ca AND the certificates for your fleet server url. Next, you will need to put an elastic agent on each machine you wish to ingest metrics from. These Elastic agents need the public certs of the CA to validate the entire SSL chain of the fleet server
@@evermightsystems Thanks. The first elastic agent that I installed worked, the second appears in good health, but it doesn't send metrics or logs, what could it be?
How do we enable the metric collection when enabled only log collection with elastic-agent initially. (option to collect metrics using elastic-agents), is it just to update the configuration or do we need to redeploy?
sorry for delayed reply! If you are using stand-alone elastic agent set up, then you might just need additional Integration that are dedicated to metric collection. If you search the word "System" under integrations, you can already see a few that might be relevant. Hope that helps!
Thanks for your message. You could see if this video here is relevant: th-cam.com/video/reupgV-A3NA/w-d-xo.html Otherwise you can email us if you need extra support!
Hi, Thanks for the informatic information I am having getting one issue on windows getting this in windows agent log file ( It is taking linux path from Fleet-- output--Advanced YAML configuration) Failed reading CA certificate: open /etc/certs/archive/elasticsearch-self-signed/ca.crt: The system cannot find the path specified.
Yes, i address that issue in this short follow up video: th-cam.com/video/reupgV-A3NA/w-d-xo.html This will also solve the same issue on Linux and Windows
As mentioned, I had an error at 17:48 related to missing CA file. Here is a follow up 10 minute video that shows better way to correct the situation: th-cam.com/video/reupgV-A3NA/w-d-xo.html
Written Summary Of Video Here: elasticsearch.evermight.com/setup-fleet-server/
These tutorials are pure gold 24''. Thanks a lot for the effort.
Thanks a lot, I rarely comment on TH-cam videos, but your videos really helped me!
Awesome Videos!
Question for Multinode Elastic Cluster in regards to the Fleet Server.
Does the Fleet Sever only need to know of the CA-Node in "--fleet-server-es" in case of a failover or do ineed to specify all of my nodes in some other configuration?
Best regards!
Thank you for creating this tutorial. I've a 3-node elasticsearch cluster and i would like to add elastic fleet server for this cluster using logstash as elasticseash output type currently does not support connectivity to a remote Elasticsearch cluster but logstash does. Do you have any plan to create another video for logstash as a output type?
Thanks for your message. Yes I was able to do an experimental version with logstash as output. I want to create a video to document what did but just been too busy. I remember it was difficult because I spoke with the elasticsearch team and they acknowledged there were some bugs and so I came up with a workaround for it. Will try to make video when I have the time.
@@evermightsystems Looking forward to your video. I ended up by creating a NGINX load balancer which redirects the traffics to my elasticsearch cluster nodes. Then Fleet output settings allowed me to specify load balancer URL with 9200 port.
Very informatic !! Thanks .Please make fleet agent installation for windows server IIS or share docs will helps us a lot to manage IIS web servers log integration.
Nice video.
Do I need to install the agent on every server I have? Do they all need to put a copy of the elasticsearch certificate?
Thanks for message. Your fleet server needs an elastic agent to make a fleet server. Your fleet server should have the public certs of your ca AND the certificates for your fleet server url.
Next, you will need to put an elastic agent on each machine you wish to ingest metrics from. These Elastic agents need the public certs of the CA to validate the entire SSL chain of the fleet server
@@evermightsystems Thanks. The first elastic agent that I installed worked, the second appears in good health, but it doesn't send metrics or logs, what could it be?
Does the agent really pass the data to the fleet server or does the fleet server just tell the agent to pass the data to elastic?
You are correct!!! I will review the video again when I get a chance and leave a comment somewhere toe clarify/correct this mis-information.
@@evermightsystems Thanks very much. I was really unsure about this.
tuto très bien expliqué ! simple et efficace . merci
How do we enable the metric collection when enabled only log collection with elastic-agent initially. (option to collect metrics using elastic-agents), is it just to update the configuration or do we need to redeploy?
sorry for delayed reply! If you are using stand-alone elastic agent set up, then you might just need additional Integration that are dedicated to metric collection. If you search the word "System" under integrations, you can already see a few that might be relevant. Hope that helps!
Thank you 😊
Hey man, How do I update the entire elk stack? i have the version 8.8.2 and wanted to update to the latest. It would be a good video
definitely would be a good subject, and i've added to our tasklist.
in elastic agent and fleet server i get "Error dialing x509: certificate signed by unknown authority" issue how to resolve this error ?
Thanks for your message. You could see if this video here is relevant: th-cam.com/video/reupgV-A3NA/w-d-xo.html
Otherwise you can email us if you need extra support!
Hi, Thanks for the informatic information
I am having getting one issue on windows getting this in windows agent log file ( It is taking linux path from Fleet-- output--Advanced YAML configuration)
Failed reading CA certificate: open /etc/certs/archive/elasticsearch-self-signed/ca.crt: The system cannot find the path specified.
Yes, i address that issue in this short follow up video: th-cam.com/video/reupgV-A3NA/w-d-xo.html This will also solve the same issue on Linux and Windows
Thanks for information 🙏
can you make a tutorial video running elastic agent in the docker container. purpose to monitor log path of application container
I'll need sometime to research this before I can do it. But I'll update you once I figure out!
thanks!
Very nice. Thanks.
ssh -> Permission denied (publickey,password).
Sorry for delay in reply. You can contact us through email to schedule a zoom meeting and we can try to troubleshoot together
@@evermightsystems solved :)