Stack Management

edit

Stack Management

edit

Stack Management is home to UIs for managing all things Elastic Stack— indices, clusters, licenses, UI settings, data views, spaces, and more.

Access to individual features is governed by Elasticsearch and Kibana privileges. Consult your administrator if you do not have the appropriate access.

Ingest

edit

Ingest Pipelines

Create and manage ingest pipelines that let you perform common transformations and enrichments on your data.

Logstash Pipelines

Create, edit, and delete your Logstash pipeline configurations.

Data

edit

Index Management

View index settings, mappings, and statistics and perform operations, such as refreshing, flushing, and clearing the cache. Practicing good index management ensures that your data is stored cost effectively.

Index Lifecycle Policies

Create a policy for defining the lifecycle of an index as it ages through the hot, warm, cold, and delete phases. Such policies help you control operation costs because you can put data in different resource tiers.

Snapshot and Restore

Define a policy that creates, schedules, and automatically deletes snapshots to ensure that you have backups of your cluster in case something goes wrong.

Rollup Jobs

[8.11.0] Deprecated in 8.11.0. Rollups are deprecated and will be removed in a future version. Use downsampling instead. Create a job that periodically aggregates data from one or more indices, and then rolls it into a new, compact index. Rollup indices are a good way to store months or years of historical data in combination with your raw data.

Transforms

Use transforms to pivot existing Elasticsearch indices into summarized or entity-centric indices.

Cross-Cluster Replication

Replicate indices on a remote cluster and copy them to a follower index on a local cluster. This is important for disaster recovery. It also keeps data local for faster queries.

Remote Clusters

Manage your remote clusters for use with cross-cluster search and cross-cluster replication. You can add and remove remote clusters, and check their connectivity.

Alerts and Insights

edit

Rules

Centrally manage your rules across Kibana.

Cases

Create and manage cases to investigate issues.

Connectors

Create and manage reusable connectors for triggering actions.

Reporting

Monitor the generation of reports—PDF, PNG, and CSV—and download reports that you previously generated. A report can contain a dashboard, visualization, table with Discover search results, or Canvas workpad.

Machine Learning Jobs

View, export, and import your anomaly detection and data frame analytics jobs. Open the Single Metric Viewer or Anomaly Explorer to see your anomaly detection results.

Watcher

Detect changes in your data by creating, managing, and monitoring alerts. For example, you might create an alert when the maximum total CPU usage on a machine goes above a certain percentage.

Maintenance windows

Suppress rule notifications for scheduled periods of time.

Security

edit

Users

View the users that have been defined on your cluster. Add or delete users and assign roles that give users specific privileges.

Roles

View the roles that exist on your cluster. Customize the actions that a user with the role can perform, on a cluster, index, and space level.

API Keys

Create secondary credentials so that you can send requests on behalf of the user. Secondary credentials have the same or lower access rights.

Role Mappings

Assign roles to your users using a set of rules. Role mappings are required when authenticating via an external identity provider, such as Active Directory, Kerberos, PKI, OIDC, and SAML.

Kibana

edit

Data Views

Manage the fields in the data views that retrieve your data from Elasticsearch.

Saved Objects

Copy, edit, delete, import, and export your saved objects. These include dashboards, visualizations, maps, data views, Canvas workpads, and more.

Tags

Create, manage, and assign tags to your saved objects.

Search Sessions

Manage your saved search sessions, groups of queries that run in the background. Search sessions are useful when your queries take longer than usual to process, for example, when you have a large volume of data or when the performance of your storage location is slow.

Spaces

Create spaces to organize your dashboards and other saved objects into categories. A space is isolated from all other spaces, so you can tailor it to your needs without impacting others.

Advanced Settings

Customize Kibana to suit your needs. Change the format for displaying dates, turn on dark mode, set the timespan for notification messages, and much more.

Stack

edit

License Management

View the status of your license, start a trial, or install a new license. For the full list of features that are included in your license, see the subscription page.