Observability overview
editObservability overview
edit[preview] This functionality is in technical preview and may be changed or removed in a future release. Elastic will work to fix any issues, but features in technical preview are not subject to the support SLA of official GA features.
Observability provides granular insights and context into the behavior of applications running in your environments. It’s an important part of any system that you build and want to monitor. Being able to detect and fix root cause events quickly within an observable system is a minimum requirement for any analyst.
Observability provides a single stack to unify your logs, metrics, and application traces. Ingest your data directly to your Observability project, where you can further process and enhance the data, before visualizing it and adding alerts.
Log monitoring
editAnalyze log data from your hosts, services, Kubernetes, Apache, and many more.
In Logs Explorer (powered by Discover), you can quickly search and filter your log data, get information about the structure of the fields, and display your findings in a visualization.
Learn more about log monitoring →
Application performance monitoring (APM)
editInstrument your code and collect performance data and errors at runtime by installing APM agents like Java, Go, .NET, and many more. Then use Observability to monitor your software services and applications in real time:
- Visualize detailed performance information on your services.
- Identify and analyze errors.
- Monitor host-level and APM agent-specific metrics like JVM and Go runtime metrics.
The Service inventory provides a quick, high-level overview of the health and general performance of all instrumented services.
Learn more about Application performance monitoring (APM) →
Infrastructure monitoring
editMonitor system and service metrics from your servers, Docker, Kubernetes, Prometheus, and other services and applications.
The Infrastructure UI provides a couple ways to view and analyze metrics across your infrastructure:
The Inventory page provides a view of your infrastructure grouped by resource type.
The Hosts page provides a dashboard-like view of your infrastructure and is backed by an easy-to-use interface called Lens.
From either page, you can view health and performance metrics to get visibility into the overall health of your infrastructure. You can also drill down into details about a specific host, including performance metrics, host metadata, running processes, and logs.
Learn more about infrastructure monitoring →
Synthetic monitoring
editSimulate actions and requests that an end user would perform on your site at predefined intervals and in a controlled environment. The end result is rich, consistent, and repeatable data that you can trend and alert on.
For more information, see Synthetic monitoring.
Alerting
editStay aware of potential issues in your environments with Observability’s alerting and actions feature that integrates with log monitoring and APM. It provides a set of built-in actions and specific threshold rules and enables central management of all rules.
On the Alerts page, the Alerts table provides a snapshot of alerts occurring within the specified time frame. The table includes the alert status, when it was last updated, the reason for the alert, and more.
Service-level objectives (SLOs)
editSet clear, measurable targets for your service performance, based on factors like availability, response times, error rates, and other key metrics. Then monitor and track your SLOs in real time, using detailed dashboards and alerts that help you quickly identify and troubleshoot issues.
From the SLO overview list, you can see all of your SLOs and a quick summary of what’s happening in each one:
Cases
editCollect and share information about observability issues by creating cases. Cases allow you to track key investigation details, add assignees and tags to your cases, set their severity and status, and add alerts, comments, and visualizations. You can also send cases to third-party systems, such as ServiceNow and Jira.
AIOps
editReduce the time and effort required to detect, understand, investigate, and resolve incidents at scale by leveraging predictive analytics and machine learning:
- Detect anomalies by comparing real-time and historical data from different sources to look for unusual, problematic patterns.
- Find and investigate the causes of unusual spikes or drops in log rates.
- Detect distribution changes, trend changes, and other statistically significant change points in a metric of your time series data.