-
Notifications
You must be signed in to change notification settings - Fork 8.1k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[Fleet] Add ability to enable and configure HTTP Monitoring #153950
Comments
Pinging @elastic/fleet (Team:Fleet) |
cc @nimarezainia - would like to have your input on the priority of exposing advanced This is converted to the following in agent yaml:
|
To give more context, it's something problematic for APM but we have a "workaround": re-enroll the Agent into Fleet. |
re-enrolling the agent is never an acceptable solution. @jen-huang we should address this but not sure if it's that urgent. I'll let you place in the appropriate sprint. |
@nimarezainia This will need design consideration to support all
@pierrehilbert Are all the |
I'm not aware if we have another documentation for that somewhere else. |
Sorry I am not aware of any other docs. |
this is become blocking for installation. Environment: Kubernetes VM using microk8s I have elastic agent installed inside the k8s using this guide https://www.elastic.co/guide/en/fleet/current/running-on-kubernetes-managed-by-fleet.html#running-on-kubernetes-managed-by-fleet, it then bind to the host 6791 as seen on Now I want to add Fleet Elastic Agent in the node itself using default guide when adding agent (that refer to https://www.elastic.co/guide/en/fleet/8.7/install-fleet-managed-elastic-agent.html) , but it can't because it can't bind to 6791, and I don't think editing
|
Wait, so the reason I've been getting no result from modifying elastic-agent.yml is that it is no longer allowed? Even though the file itself still has that comment on top "You can update this file to configure the settings that are not supported by Fleet."? Specifically we're trying to set up backups via Veeam and it requires the 6791 port. So I've been trying to get Agent to stop listening on that port. Is my only choice to just stop using Agent? |
If you want your local This is the current only way if you want to change the monitoring port. |
What did you meant by that? I can combine some local option with some coming from Fleet or am I reading this wrong? |
You can only during enrollment phase. |
So if I try to configure HTTP endpoint for metrics https://www.elastic.co/guide/en/beats/filebeat/current/http-endpoint.html this should work as well ? |
Strange is that if I do:
I can already see
but that does not seem to work, I cannot see port 5066 open Do I need re-enroll? |
Or would this filebeat HTTP endpoint for metrics need to be configured under the |
The setting I did an In general, we recommend to not edit the configuration of Elastic Agent. How to change or disable the
|
Long term, edits to elastic-agent.yml for settings not covered by Kibana/Fleet really should apply. Even if set after installation. Is there an issue (I'll go look myself in a bit) covering progress on making that happen? Is there any movement on making the topic of this issue happen? As in making Elastic Agent fully configurable through Kibana/Fleet UI? The workaround given is not exactly stellar user interface. I'd only need to do it on maybe 10 or so vm's. I can't imagine working somewhere larger and needing to make it happen on hundreds. If it was just adding some config to elastic-agent.yml and restarting it, a small ad-hoc Ansible playbook would do. But since I have to un-enroll, edit, re-enroll, I'd need to figure out how to securely pass the enrollment token around, and how to make sure the right token for the right policy goes to the right vm. Doable, I think, but enough extra I haven't done it yet. |
I think this boils down to have a richer structured Elastic Agent config deployable by Fleet Server through a policy. |
Ping @nimarezainia to ensure that this is under your radar. |
@jerrac this would break the configuration model for Fleet managed agents. Fleet here (and its policies) are a configuration source of truth. If we allow changes to the configuration on the agent, it will quickly drift from the source of truth and end up with agents in a policy that are not behaving the same. We will address this issue properly by adding the configurations to the policy. |
@amitkanfer @kpollich another use case for that advanced config conversation. |
I get that, even mostly agree with it, but the fact this issue exists makes me think I'd rather risk the configuration drift than not be able to actually use the tool at all. That said, it sounds like there is work going on to make sure Fleet can mange the settings properly. Hopefully that will get everything under one hood and we won't end up with some settings only managed via yaml, and others via the UI. So I'll just look forward to seeing the results of that. :) |
@nimarezainia Is there any progress on making the monitoring port configurable? As well as the rest of the settings that used to be configured in the yaml file? |
@jerrac No I am sorry I don't have an update at this point. There are other higher priorities on the roadmap but we will get to this in due course. |
Um, so, this issue is about 15 months old. At what point will this get addressed? Is the number of people effected by this really so low that it can linger for that long? That'd explain the delay, still leave me frustrated, but it'd explain it... |
@jerrac yes there are higher priority issues that we are spending time on. |
This is scheduled for delivery in 8.16.0. |
@nimarezainia 2 Qs:
|
@jen-huang the mock up is probably dated before the liveness changes were added. But yes the short answer is to have the more comprehensive set of options. It would probably be a bit weird to have an "advanced" expandable under the One option would be to have an expandable section in the advanced settings say titled "Advanced Agent Monitoring" and have all the options under that. How does that sound? (also as a tangent, could we have the whole "Advanced Settings" section of the policy as an expandable? ) |
@nimarezainia The existing advanced settings at the bottom are built from config and therefore the UI is not very flexible. I opted for the original option of adding The UI was also informed by my conversation with @cmacknz where we clarified that:
Let me know if you have any questions or concerns. Craig, please correct me if I misunderstood any of the above. |
brilliant @jen-huang . looks great. On a tangential ask: Can the Advanced Settings section (bottom of the agent policy) be behind an expandable also? hidden from the average user. While we are at it :-). or can open another issue for that. |
@nimarezainia Would be great to have a separate small issue for that. I can pick that up separately. |
@jen-huang while you are at it, would it be possible to also change the custom processors text box so that it's expandable/resizeble? Thank you |
@zez3 please open an enhancement issue for that. thank you. |
@nimarezainia & @jen-huang Thank you |
@nimarezainia During my testing I found that |
@cmacknz can we just remove it from the filebeat config as well? as in deprecate |
Describe the feature:
When Elastic Agent is enrolled into Fleet, we can no more configure the
agent.monitoring
setting because it's part of theelastic-agent.yml
file (that is taken into account only when we are enrolling the Agent).In the past, we were able to still configure it in the
fleet.yml
file but now this file is encrypted and it's no more possible.This issue is following this SDH https://github.com/elastic/sdh-beats/issues/3168
Requirements
In the agent policy settings page, under the Agent Monitoring section
This section should allow the Agent Monitoring parameters to be configured ONLY if either collection of agent logs or metrics is enabled (which is by default)(removed: see comment [Fleet] Add ability to enable and configure HTTP Monitoring #153950 (comment))Something to this effect:
For reference the full configuration options are:
Note:
http.buffer.enabled
does not work and can be omitted, see comment #153950 (comment)The text was updated successfully, but these errors were encountered: