Elasticsearch Integration
Connect Elasticsearch to enable the AI agent to search logs and analyze data during investigations.
Capabilities
| Capability | Description |
|---|---|
| Search Logs | Query log data with filters |
| Aggregate Data | Run aggregations and analytics |
| Browse Indices | Access available indices |
Setup
1
Get Connection Details
You'll need:
- Elasticsearch URL
- Authentication credentials (API key or username/password)
2
Add Integration in Autoheal
- Go to Integrations → Elasticsearch
- Enter your Elasticsearch URL
- Choose authentication method and enter credentials
3
Test and Save
Click Test Connection then Save.
Authentication Options
API Key (Recommended)
Create an API key in Kibana or via the Elasticsearch API with read permissions.
Basic Auth
Use a username and password with read access to required indices.
Example Queries
Search for errors in the application logs from the last hour
Find all 500 errors in the nginx logs
Show me logs containing "OutOfMemoryError"