Hi all,
A recent upgrade to SELKS updated Elasticsearch, Logstash and Kibana to 7.15. The result is that when the dashboards are viewed in Kibana, the following warning appears:-
Trying to fix this problem by enabling minimal security caused the SELKS stack to lose connectivity between Elasticsearch, Logstash and Kibana. The fix to the problem wasn't evident at first, although unorthodox.
1.) SSH into SELKS and edit /etc/elasticsearch/elasticsearch.yml
2.) Place the following line at the end of the file:-
xpack.security.enabled: false
3.) Save the file and restart elasticsearch with:-
systemctl restart elasticsearch or service elasticsearch restart
Hope this information helps.