IMPORTANT: No additional bug fixes or documentation updates will be released for this version. For the latest information, see the current release documentation.

« Grant users access to Auditbeat indices Set the password for the built-in monitoring user »

› › ›

Configure Auditbeat to use encrypted connections

edit

Configure Auditbeat to use encrypted connections

edit

If encryption is enabled on the Elasticsearch cluster, you need to connect to Elasticsearch via HTTPS. If the certificate authority (CA) that signed your node certificates is not in the host system’s trusted certificate authorities list, you also need to add the path to the .pem file that contains your CA’s certificate to the Auditbeat configuration.

To configure a Auditbeat to connect to Elasticsearch via HTTPS, add the https protocol to all host URLs:

output.elasticsearch:
  hosts: ["https://localhost:9200"] 
  index: "auditbeat"
  ssl.certificate_authorities: ["/etc/pki/root/ca.pem"]

	Specify the `https` protocol to connect the Elasticsearch cluster.
	Specify the path to the local `.pem` file that contains your Certificate Authority’s certificate. This is generally only needed if you use your own CA to sign your node certificates.

« Grant users access to Auditbeat indices Set the password for the built-in monitoring user »

Was this helpful?

Feedback

The Search AI Company

ELK Stack

Elastic Cloud

Generative AI

Search

Security

Observability

By solution

Industries

Customer spotlight

Research

Build

Learn

Connect

Configure Auditbeat to use encrypted connections

Configure Auditbeat to use encrypted connections

Follow us

About us

Join us

Partners

Trust & Security

Investor relations

Excellence Awards

About us

Join us

Partners

Trust & Security

Investor relations

Excellence Awards