Skip to main content

API Key Authentication Setup

Create an API key for Elasticsearch authentication
  1. Log in to your Elasticsearch cluster or Elastic Cloud
  2. Navigate to Stack Management > Security > API Keys
  3. Click ‘Create API key’
  4. Enter a name and description
  5. Select the appropriate permissions (read access to indices)
  6. Click ‘Create’
  7. Copy the generated API key immediately
Related Documentation: View Elasticsearch API Key Documentation

Username/Password Authentication Setup

Use basic authentication with Elasticsearch
  1. Ensure your Elasticsearch cluster has security enabled
  2. Create a user in Elasticsearch Security
  3. Assign appropriate roles to the user (e.g., read-only access)
  4. Note the username and password
Related Documentation: View Elasticsearch Security Documentation

Find Your Elasticsearch Host and Index

Locate your Elasticsearch cluster hostname and index name
  1. Find your Elasticsearch cluster endpoint
  2. For Elastic Cloud: <deployment-name>.<region>.cloud.es.io
  3. For self-hosted, use your cluster’s hostname or IP
  4. Identify the index name containing your logs
  5. Common index patterns: logs-, app-logs-, filebeat-*
Related Documentation: View Elasticsearch Index Documentation

Field Reference

The following fields are used when configuring this integration:
  • API Key (ApiKey)
  • Elasticsearch Host (Host)
  • Elasticsearch Index (Index)
  • Password (Password)
  • Username (Username)