Open widhalmt opened 1 year ago
Is the documentation still valid with these changes?
... I hope, I didn't miss anything. But I'll have a second look.
@widhalmt Can I push documentation for elasticsearch_http_security
and elasticsearch_http_protocol
to this PR. I can check and add documentation for beats_security
, if required, too.
@DanOPT of course! Go ahead.
Whats going on here? Can i merge main? Are you still working on changes?
@lcndsmr sorry for the eternal wait... yes, the documentation already has the new variables. So this fix actually makes code matching the docs better.
@lcndsmr could you recheck?
fixes #248
The
metricbeat.yml
andauditbeat.yml
templates have code for both connecting to Logstash or Elasticseach. They used different variables to determine whether to turn on TLS or not. That resulted in a missing default and therefore Beats setup breaking when connecting to Elasticseach. I changed the variable that's queried to determine whether to turn on TLS or not.This is something between a workaround and a partial solution. While it makes more sense to use a role related variable for both Logstash and Elasticsearch output (other than before) it's still not the goal we want.
So overhauling the whole process of determining whether we need TLS or not is due. I'll start a discussion and we need to adjust all roles to the solution we find. Now there are similarities but it's not exactly the same in every role.