- Observability: other versions:
- What is Elastic Observability?
- What’s new in 8.14
- Get started
- Observability AI Assistant
- Application performance monitoring (APM)
- Self manage APM Server
- Data Model
- Features
- Navigate the APM UI
- Perform common tasks in the APM UI
- Configure APM agents with central config
- Control access to APM data
- Create an alert
- Create and upload source maps (RUM)
- Create custom links
- Filter data
- Find transaction latency and failure correlations
- Identify deployment details for APM agents
- Integrate with machine learning
- Explore mobile sessions with Discover
- Observe Lambda functions
- Query your data
- Storage Explorer
- Track deployments with annotations
- OpenTelemetry integration
- Manage storage
- Configure
- Advanced setup
- Secure communication
- Monitor
- APM Server API
- APM UI API
- Troubleshoot
- Upgrade
- Release notes
- Known issues
- Log monitoring
- Infrastructure monitoring
- AWS monitoring
- Azure monitoring
- Synthetic monitoring
- Get started
- Scripting browser monitors
- Configure lightweight monitors
- Manage monitors
- Work with params and secrets
- Analyze monitor data
- Monitor resources on private networks
- Use the CLI
- Configure projects
- Configure Synthetics settings
- Grant users access to secured resources
- Manage data retention
- Use Synthetics with traffic filters
- Migrate from the Elastic Synthetics integration
- Scale and architect a deployment
- Synthetics support matrix
- Synthetics Encryption and Security
- Troubleshooting
- Uptime monitoring
- Real user monitoring
- Universal Profiling
- Alerting
- Service-level objectives (SLOs)
- Cases
- CI/CD observability
- Troubleshooting
- Fields reference
- Tutorials
IMPORTANT: No additional bug fixes or documentation updates
will be released for this version. For the latest information, see the
current release documentation.
Create agent key
editCreate agent key
editCreate an APM agent API key. Specify API key privileges in the request body at creation time.
Privileges
editThe user creating an APM agent API key must have at least the manage_own_api_key cluster privilege
and the APM application-level privileges that it wishes to grant.
Example role
editThe example below uses the Kibana role management API to create a role named apm_agent_key_user.
Create and assign this role to a user that wishes to create APM agent API keys.
POST /_security/role/apm_agent_key_user { "cluster": ["manage_own_api_key"], "applications": [ { "application": "kibana-.kibana", "privileges": ["feature_apm.all"], "resources": ["*"] }, { "application": "apm", "privileges": ["event:write", "config_agent:read"], "resources": ["*"] } ] }
Request
editPOST /api/apm/agent_keys
Request body
edit-
name - (required, string) Name of the APM agent key.
-
privileges -
(required, array) APM agent key privileges. It can take one or more of the following values:
-
event:write. Required for ingesting APM agent events. -
config_agent:read. Required for APM agents to read agent configuration remotely.
-
Example
editPOST /api/apm/agent_keys { "name": "apm-key", "privileges": ["event:write", "config_agent:read"] }
Response body
edit{ "agentKey": { "id": "3DCLmn0B3ZMhLUa7WBG9", "name": "apm-key", "api_key": "PjGloCGOTzaZr8ilUPvkjA", "encoded": "M0RDTG1uMEIzWk1oTFVhN1dCRzk6UGpHbG9DR09UemFacjhpbFVQdmtqQQ==" } }
Once created, you can copy the API key (Base64 encoded) and use it to to authorize requests from APM agents to the APM Server.
Was this helpful?
Thank you for your feedback.