Installation of Elasticsearch with Kibana & Logstash on Ubuntu Server 22.04 LTS

Video Statistics and Information

Video

Captions Word Cloud

Reddit Comments

Captions

so I had completed the elastic eight um Ubuntu Server installation I hope uh whoever had skipped that particular previous video have installed the Ubuntu Server as it was installed and your server is ready with open SSH installed um we had installed the open ssh in the installation time and right now I don't need to install that particular separately so now my machine has been on and I can open my terminal from here um I have to just type SSH elastic at the rate 192.168.0.193 and it says like okay the host is not connect tell now we can SSH so the password was great uh let's go for pseudo user and clear the terminal what we have to do here is we have to add the repository of elastic eight because Ubuntu has the repository of that Ubuntu server but don't have the repository of elastic so what we are going to do is we are going to first add the pgp key that is this key okay let me add my notes also okay so we have to add the pgb just right click and here we have our pgb hit enter and that's all you install the pgp now go down double click on this right click copy go in the terminal right click and your app transfer HTTP has been also installed now next what you have to do is you have to copy this particular repository of elastic eight in and add that into your you went to server and as you can see it has been added successfully so what next we have to install the elastic search so let's update and install the elasticate you can see it has got the hit of elastic eight it means the repository has been installed correctly here it is a crucial part you have to look at like what uh you will get some more details so that details needed to be clarified and you have to save that particular details of elastic search you can see it is downloading the file it will totally depend on your internet speed you can see here the file size has been 52 MB Omega byte per second sorry megabytes and this is my speed like 11.5 megabytes per second so it is a pretty good speed not as per the cloud but it is good so the installation is taking time and please hold on and there we go so we are installing 8.6.2 and we got our details so these are the details which we were needed and I am going to save that particular detail into our Notepad this is the password which we will be needed for right now we can hold um back or minimize this and continue installing the moreover the kibana and the lock stash we are installing kibana for visualization and log stash for enriching the or n reaching the data that has been sent by the host or the particular machine so this both packages are important and we are installing it in a one shot elastic eight is pretty simple to install and versatile to use you may um move this video forward for the next part so I had paused the video previously so now we can see the insta the download process has been completed the installation is taking place this is also 8.6.2 wonderful same version for both now coming on to the part as we can see the kibana lock stash and elasticate has been installed once it is done let's jump on the configuration part of the elastic and kibana so the configuration uh to be done there there is a location for elastic and also for kibana to edit that particular configuration file we have to use our favorite uh text editor for my it is nano and the path as Etc elasticsearch elasticsearch Dot yml um give your cluster name for my cluster I will be giving here offensive kernel as my cluster name um not giving the node name if you want to give the node name for me uh there is a network host which I am going to give 0.0.0.0 same you have to do in the uh in your Cloud info and same goes here just uncomment it and every other detail should be same as it is Ctrl X Y enter same details you have to enter But now in kibana and server port on comment um localhost localhost 0.0.0 now it's time um you may add here your url whatever URL you would like to receive from the client side and if that URL is not being there so it won't allow for basically for visiting you can add your customize or custom certificate here you can enable that I may not you don't need to enter anything here just do one thing save it and you are done now after uncommenting the port and the IP saving the file doing both for elastic and kibana you have to now start the services by typing system CTL start elastic search and elasticsearch will take time to get started because it is a database it may crash if you don't provide the minimum codes and threads as I said you should be providing the minimum of at least four cores you can see the elastic search has been started and now it's time for kibana kibana has also been started we can see the status from here okay and status for elastic search yes kibana is also running good good one so it has been running on 5601 that is the default port for kibana https hyphen hyphen they both number of my machine and five six zero one I guess it will be starting on HTTP yes and now it is showing the server public base URL and that is fine as I have said we have to paste the enrollment token here so the enrollment token is there in my guess he needs the okay let's see elastic agent enrollment because kibana want to get integrated with elastic search okay great so what I will do here is we will go in your search I guess there it is having the elastic bin I'm here and this is the script which you have to run elastic search create token enrollment token and I guess iPhone scope kibana is right one yeah we got it so you should also save this um token with yourself and paste the same here you can see connecting to so and so you can configure it manually too we are going for automated configure elastic it is saying that you have to run for the verification code for verification code you have to go a little back and then in keypana you will find bin and there will be some Scripts and in that particular scripts you have to run the key Banner verification code and the verification code is 909 734 909 734 verify starting the elastic service completing the setup and we are all set to done now it's time to log into our elasticsearch the whatever we have done we have to see like is it going on this is the password which you have copied from the configuration which you have got from the from here in the terminal while installation of elasticsearch this was the configuration and this is the password Here so which you have copied which I have also copied so I can go here and login so as you can see the elastic is loading up and there we go so we can add the integration or explore on my own which I am going to do this means and this is how the elastic search looks like there are some dashboards it says that you have to add the integration okay that's great we can go for the alerts and I guess it won't be doing any sort of things because uh since there is no integration has been done and in the next video we will see how to set up the fleet server and after that setting up the fleet server we are going to set up or we are going to see in the next video that how to integrate a particular machine so I am going to integrate my VM machine showing you how to integrate any machines not in my host machine I am going to set up it up so that's all for this particular video If you enjoyed it please give a like and if you have any sort of a problem related to the installation do let me know in the comment section below thank you thanks a lot have a great day

Info

Channel: Offensive Kernel

Views: 14,676

Rating: undefined out of 5

Keywords:

Id: oiK0JWin7i0

Channel Id: undefined

Length: 13min 40sec (820 seconds)

Published: Sat Mar 25 2023