No Default Index Pattern after update
Robert Burghdoff
Config: Request failed with status code: 403
Error: Request failed with status code: 403
_callee/<@https://IPADDRESS/bundles/commons.bundle.js:1:559049
tryCatch@https://IPADDRESS/bundles/vendors.bundle.js:58:364497
makeInvokeMethod/<@https://IPADDRESS/bundles/vendors.bundle.js:58:366575
defineIteratorMethods/</prototype[method]@https://IPADDRESS/bundles/vendors.bundle.js:58:364779
step@https://IPADDRESS/bundles/commons.bundle.js:1:558071
step/<@https://IPADDRESS/bundles/commons.bundle.js:1:558206
notify/</<@https://IPADDRESS/bundles/vendors.bundle.js:58:331272
notify/<@https://IPADDRESS/bundles/vendors.bundle.js:58:330998
flush@https://IPADDRESS/bundles/vendors.bundle.js:58:336013
I also attempted to create an index pattern and got the same error.
Ran the command:
sudo so-elastic-configure-kibana
Wes Lambert
--
Follow Security Onion on Twitter!
https://twitter.com/securityonion
---
You received this message because you are subscribed to the Google Groups "security-onion" group.
To unsubscribe from this group and stop receiving emails from it, send an email to security-onio...@googlegroups.com.
To post to this group, send email to securit...@googlegroups.com.
Visit this group at https://groups.google.com/group/security-onion.
For more options, visit https://groups.google.com/d/optout.
Robert Burghdoff
Output from curl localhost:9200/.kibana/_settings
{".kibana":{"settings":{"index":{"number_of_shards":"1","auto_expand_replicas":"0-1","blocks":{"read_only_allow_delete":"true"},"provided_name":".kibana","creation_date":"1524161953154","number_of_replicas":"0","uuid":"EZzWH8ObQm6CQ50Az_LfGQ","version":{"created":"6020399","upgraded":"6030299"}}}}}
Robert Burghdoff
Going to Dev Tools and put this in the console and execute:
PUT _settings
{
"index": {
"blocks": {
"read_only_allow_delete": "false"
}
}
}
PUT :logstash-
{
"index": {
"blocks": {
"read_only_allow_delete": "false"
}
}
}
Then I was able to go into the index patterns and select *:logstash-* as the default.
Max S.
I just want to mention here that I was having the same issue, but running the short scripts as you've stated above resolved my Kibana's issues as well.
Thanks Robert and Wes.
bobby.digit...@gmail.com
Hey all,
I'm struggling with the same type of errors post "sudo soup".
Is there anything i could mod before conducting the upgrade??
I'm currently trying to same upgrade with double the free space on the main file system.
Let me know,
Cheers,
Bobby
bobby.digit...@gmail.com
> Hey all,
>
> I'm struggling with the same type of errors post "sudo soup".
> Is there anything i could mod before conducting the upgrade??
> I'm currently trying to same upgrade with double the free space on the main file system.
>
> Let me know,
> Cheers,
> Bobby
Just fixed my issue with this curl command on the seconion host SSH console:
curl -XPUT -H "Content-Type: application/json" http://localhost:9200/_all/_settings -d '{"index.blocks.read_only_allow_delete": null}'
and got this
{"acknowledged":true}
And Kibana now works
Josh
> Just fixed my issue with this curl command on the seconion host SSH console:
>
> curl -XPUT -H "Content-Type: application/json" http://localhost:9200/_all/_settings -d '{"index.blocks.read_only_allow_delete": null}'
>
> and got this
>
> {"acknowledged":true}
>
> And Kibana now works
Bobby.Digit, thanks! Your suggestion fixed my Kibana too.
--Josh
Gabriel Sofian
Christopher Lowson
bobby.digit your the best <3
I wasted so much time trying to fix this LOL