This mediatype allows sending trigger actions to Elasticsearch. It gathers as much information as possible and sends it to Elasticsearch.
-
First, create an Index template in Elasticsearch to ensure your Zabbix data will be correctly indexed.
- In Elasticsearch, go to
Management->Dev Toolsand paste the content from the file elasticsearch_index.txt. Then execute the code.
- In Elasticsearch, go to
-
Optional: If your Zabbix instance is configured with authentication, paste the contents of elasticsearch_createapi.txt in the Dev Tools and execute the code. The result will show an encoded Key which you will need later to configure in your Zabbix Mediatype.
-
Download and import the Mediatype in Zabbix.
-
Change the parameters according to your environment:
elastic_apikey(optional, if Elasticsearch requires authentication)elastic_url: Point it to your Elasticsearch index.zabbix_url: Change it to the URL of your Zabbix webinterface (so you will have a URL to your problem in Elasticsearch).
-
Add a separate user to Zabbix (for example, Elasticsearch).
- Give the user at least read rights to all groups.
Note: Make sure the user is member of a group that has read rights to all hostgroups and also when new groups added to Zabbix, this user has read rights.
-
Add the Elasticsearch Mediatype to the user (Send To Elastic).
-
Add Trigger action:
- Name: Elastic
- Operations: Send message to user Elastic via Elasticsearch.
- Recovery operations: Notify all involved.
- Update operations: Notify all involved.