Hi Guys, anybody knows how to configure syslog-ng to send data to elasticsearch-http destination when xpack.security has been enabled on elasticsearch?
I configured ca-file() with CA .pem from elasticsearch but getting error in regards to authorization:
Server returned with a 4XX (client errors) status code, which means we are not authorized or the URL is not found.; url='elastic.mydomain.net:9200/_bulk', status_code='401', driver='#anon-destination0#0', location='#buffer:7:5'
URL is definitely accessible and exists.
E.g. for that matter kibana needs to be configured with next in order to access elasticsearch
Is there similar configuration in syslog-ng?