Stack Overflow
Stack Overflow

Questions tagged [elasticsearch-opendistro]

An Apache 2.0-licensed distribution of Elasticsearch enhanced with enterprise security, alerting, SQL, and more. Links:

https://opendistro.github.io/for-elasticsearch

https://www.elastic.co/products/elasticsearch

This solution is provided by AWS with a "fork" of elasticsearch engine (more detail on this post)

134 questions
0
votes
0 answers

Opendistro Elasticsearch Azure repository plugin

I've been trying to use azure blob storage with opendistro elasticsearch for snapshot. I've passed account name and key for storage account but while trying to register repo. getting following…
mohammed
  • 383
  • 4
  • 15
0
votes
1 answer

Running bash/java script from ansible keeps failing with return code 126

I am trying to execute the opendistro/elasticsearch security setup script from an ansible playbook and keep failing with return code 126. - name: Initialize elasticsearch security command:…
adonas
  • 1
0
votes
1 answer

Roll up availability on AWS Elasticsearch Service?

Open Distro for Elasticsearch has Rollup implemented. But this is missing on the AWS Elasticsearch service. I do really need this feature. Is there anyway to implement this feature or does anybody have any solution which they are currently doing in…
Derrops
  • 7,651
  • 5
  • 30
  • 60
0
votes
1 answer

How to download output of PPL command?

The quickstart guide has an image of PPL page. https://opendistro.github.io/for-elasticsearch-docs/docs/ppl/ There is a "Download" drop down button in the screen. I do not see that option. SQL query output has that Download button, but PPL does…
shantanuo
  • 31,689
  • 78
  • 245
  • 403
0
votes
3 answers

Is SQL and PPL fully supported?

I tried a few queries and found that some of the SQL queries are working while some are not. I uploaded test data using dev tools. I have uploaded a few hundred documents (crwaler) as well. PUT /library/book/_bulk?refresh&pretty {"index":{"_id":…
shantanuo
  • 31,689
  • 78
  • 245
  • 403
0
votes
1 answer

keycloak, Apache, mod_auth_openidc, elasticsearch opendistro

I'm trying to setup single sign-on (SSO) for accessing private directory on apache 2.4 and assign role in elasticsearch (opendistro) for keycloak logged user. No real problem assigning role to user in keycloak (and succeed to connect to openldap…
Germain
  • 11
  • 4
0
votes
1 answer

Opendistro for Elasticsearch - ISM is not triggering jobs

I am trying to use ISM with opendistro on AWS Elasticsearch Service v7.8. I am trying to set up a basic rollover/delete policy and it seems that the policy is not triggering. I assume I am doing something wrong, but I can't seem to track it down...…
pallen
  • 3
  • 1
  • 6
0
votes
1 answer

Getting Missing value in Elasticsearch

I am looking for a query that will return the value which is missing in the documents from the given list of values. For example, there is a country field in the documents with values USA, Dubai, Singapore, Japan. Now I want to tell elastic search…
vinay
  • 49
  • 8
0
votes
1 answer

How to format query result as json in Action message template

I'm using Opendistro for creating alert and calling a custom webhook to send the alert. I would like Opendistro to send the query result within the message. The only problem is the format of the result is not json but something close. For example,…
Atomiche
  • 45
  • 5
0
votes
2 answers

How to prevent shard relocation from hot nodes to warm or cold nodes?

What do I have: Elasticsearch (7.7.0) cluster (amazon/opendistro-for-elasticsearch:1.8.0 Docker image) one master node one coordinating node two data nodes with node.attr.data=hot one data node with node.attr.data=warm What do I want: prevent…
Tarasovych
  • 2,228
  • 3
  • 19
  • 51
0
votes
2 answers

The "email" option for Alerting Destination is missing (Opendistro Elasticsearch/Kibana)

Hello and best wishes for everyone, I am configuring alerting in Kibana Opendistro, but cannot find the opetion for "email" in the menu of the Alerting > Destination > Create. I can see options for Amazon, Slack and Custom webhook. It is suppossed…
Ecofintech
  • 323
  • 2
  • 5
  • 15
0
votes
0 answers

Elasticsearch Opendistro Security -- Add users to readall role

I'm trying to add users to the readall role in Kibana using the elasticsearch open distro security plugin. The contents of the get request to /roles/readall is below, as is the curl syntax I'm using and the associated error. The goal here is to…
Matt Klaver
  • 169
  • 1
  • 10
0
votes
1 answer

Understanding the flow in Gradle project

I am purely from the Maven background, I haven't used the Gradle build so far. Completed : I am able to successfully build this project https://github.com/opendistro-for-elasticsearch/anomaly-detection using the ./gradlew build As per the…
Harry
  • 3,072
  • 6
  • 43
  • 100
0
votes
1 answer

What is the purpose of OpenDistro/Elasticsearch cluster permission cluster:monitor/main?

On the Permissions page of OpenDistro, Permissions, the cluster permission cluster:monitor/main is mentioned. However, I've been unable to find any documentation or information regarding what this permission actually gives access to. The minimum…
CodingBeagle
  • 1,888
  • 2
  • 24
  • 52
0
votes
1 answer

Elastic - Check if all values in a given time range are greater than a threshold X

I want to create an alert in Kibana using an Elastic query. I'm using the opendistro alerting feature. I want to check all of the values of the cpu.pct field in the last 10 minutes is greater than 50 and raise an alert if yes. { "size":…
amat_coder
  • 31
  • 4
1 2 3
8 9