🐳 Elastic Stack (ELK) v8+ on Docker with Compose. Pre-configured out of the box to enable Logging, Metrics, APM, Alerting, ML, and SIEM features. Up with a Single Command.
1) I've managed to basically start containers and log in Kibana by Chrome (via http). But I don't understand what to do next in order to connect my Winlogbeat. I copied elastdocker/secrets/ca/ca.crt to my Windows computer with Winlogbeat in Trusted Root Certification Authorities. But it doesn't send any logs to Elasticsearch.
The same with connection through my browser to Kibana from that computer - Chrome writes "Certificate is not valid".
2) When I change password of elastic user in .env do I need to run "make setup" again?
3) Why is LOGSTASH_PORT=8080 in .env? Not 5044?
4) What does KIBANA_HOST=kibana mean in .env? I mean what host is named "kibana"? My docker host is named differently. Kibana container's hostname is something like "e7456345cd234fb34". Should I change KIBANA_HOST parameter?
1) I've managed to basically start containers and log in Kibana by Chrome (via http). But I don't understand what to do next in order to connect my Winlogbeat. I copied elastdocker/secrets/ca/ca.crt to my Windows computer with Winlogbeat in Trusted Root Certification Authorities. But it doesn't send any logs to Elasticsearch. The same with connection through my browser to Kibana from that computer - Chrome writes "Certificate is not valid". 2) When I change password of elastic user in .env do I need to run "make setup" again? 3) Why is LOGSTASH_PORT=8080 in .env? Not 5044? 4) What does KIBANA_HOST=kibana mean in .env? I mean what host is named "kibana"? My docker host is named differently. Kibana container's hostname is something like "e7456345cd234fb34". Should I change KIBANA_HOST parameter?