ELK Stack

Overview

This section guides you through configuring and running the integration between the ELK Stack and NCP

By following these steps, you'll enable NCP to:

  • Pull and index logs from Elasticsearch for real-time visibility.

  • Allow users to query logs and telemetry data using NCP’s chat interface.

  • Improve troubleshooting efficiency and accelerate root cause analysis.

Prerequisites

Before you begin, ensure the following:

  • Elasticsearch Endpoint: URL of your Elasticsearch instance (e.g., https://elk.example.com:9200)

  • Index Information: The names of the indices that contain relevant network logs (e.g., network-logs-*, telemetry-*)

Configure ELK as a Data Source in NCP

To integrate your ELK Stack with NCP:

  1. Log in to the NCP GUI

  2. Navigate to Settings → Data Connectors, then click Add Connector

  3. Select ELK from the list of available connectors

  4. Enter the following details:

    • Name: A friendly name for your ELK data source

    • Elasticsearch URI: Base URL of your Elasticsearch instance (e.g., https://elk.example.com:9200)

    • Index Patterns: Specify the indices or wildcard patterns to fetch logs from

  5. Click Save to complete the configuration

PreviousInfluxDBNextSplunk

Last updated

Was this helpful?