Newer versions of EL7 include rsyslog v8 which includes the omelasticsearch module - I would suggest using that to send logs from rsyslog to elasticsearch directly, and do not use logstash.
On 01/25/2018 09:36 AM, Daniele Liciotti via FreeIPA-users wrote:
Hi!
I'd like to centralised Free IPA logs with Logstash/ElasticSearch/Kibana. Can you suggest me any step-by-step guide? https://www.freeipa.org/page/Howto/Centralised_Logging_with_Logstash/Elastic... I tried to follow this guide without success.
Thanks in advance, Daniele _______________________________________________ FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org To unsubscribe send an email to freeipa-users-leave@lists.fedorahosted.org