Stack Management

edit

Stack Management is home to UIs for managing all things Elastic Stack— indices, clusters, licenses, UI settings, index patterns, spaces, and more.

Access to individual features is governed by Elasticsearch and Kibana privileges. Consult your administrator if you do not have the appropriate access.

Ingest

edit

Ingest Node Pipelines

Create and manage Elasticsearch pipelines that enable you to perform common transformations and enrichments on your data.

Logstash Pipelines

Create, edit, and delete your Logstash pipeline configurations.

Beats Central Management

Manage your Beats configurations in a central location and quickly deploy configuration changes to all Beats running across your enterprise.

Data

edit

Index Management

View index settings, mappings, and statistics and perform operations, such as refreshing, flushing, and clearing the cache. Practicing good index management ensures that your data is stored cost effectively.

Index Lifecycle Policies

Create a policy for defining the lifecycle of an index as it ages through the hot, warm, cold, and delete phases. Such policies help you control operation costs because you can put data in different resource tiers.

Snapshot and Restore

Define a policy that creates, schedules, and automatically deletes snapshots to ensure that you have backups of your cluster in case something goes wrong.

Rollup Jobs

Create a job that periodically aggregates data from one or more indices, and then rolls it into a new, compact index. Rollup indices are a good way to store months or years of historical data in combination with your raw data.

Transforms

Use transforms to pivot existing Elasticsearch indices into summarized or entity-centric indices.

Cross-Cluster Replication

Replicate indices on a remote cluster and copy them to a follower index on a local cluster. This is important for disaster recovery. It also keeps data local for faster queries.

Remote Clusters

Manage your remote clusters for use with cross-cluster search and cross-cluster replication. You can add and remove remote clusters, and check their connectivity.

Alerts and Insights

edit

Alerts and Actions

Centrally manage your alerts across Kibana. Create and manage reusable connectors for triggering actions.

Reporting

Monitor the generation of reports—PDF, PNG, and CSV—and download reports that you previously generated. A report can contain a dashboard, visualization, saved search, or Canvas workpad.

Machine Learning Jobs

View your anomaly detection jobs and data frame analytics jobs. Open the Single Metric Viewer or Anomaly Explorer to see your machine learning results.

Watcher

Detect changes in your data by creating, managing, and monitoring alerts. For example, you might create an alert when the maximum total CPU usage on a machine goes above a certain percentage.

Security

edit

Users

View the users that have been defined on your cluster. Add or delete users and assign roles that give users specific privileges.

Roles

View the roles that exist on your cluster. Customize the actions that a user with the role can perform, on a cluster, index, and space level.

API Keys

Create secondary credentials so that you can send requests on behalf of the user. Secondary credentials have the same or lower access rights.

Role Mappings

Assign roles to your users using a set of rules. Role mappings are required when authenticating via an external identity provider, such as Active Directory, Kerberos, PKI, OIDC, and SAML.

Kibana

edit

Index Patterns

Create and manage the index patterns that retrieve your data from Elasticsearch.

Saved Objects

Copy, edit, delete, import, and export your saved objects. These include dashboards, visualizations, maps, index patterns, Canvas workpads, and more.

Spaces

Create spaces to organize your dashboards and other saved objects into categories. A space is isolated from all other spaces, so you can tailor it to your needs without impacting others.

Advanced Settings

Customize Kibana to suit your needs. Change the format for displaying dates, turn on dark mode, set the timespan for notification messages, and much more.

Stack

edit

License Management

View the status of your license, start a trial, or install a new license. For the full list of features that are included in your license, see the subscription page.

Upgrade Assistant

Identify the issues that you need to address before upgrading to the next major version of Elasticsearch, and then reindex, if needed.