Skip to content
Branch: master
Find file Copy path
Find file Copy path
1 contributor

Users who have contributed to this file

50 lines (30 sloc) 2.34 KB

Chapter 4 - Post Install Actions

Chapter Overview

In this chapter we will:

  • Setup Kibana in order to view your logs
  • Import some premade dashboards
  • Check you are getting logs from your clients

4.1 Initial Kibana setup

Once you have completed chapters 1 to 3, you can import a set of Kibana dashboards that we have created. These will help visualise the logs, and answer questions like 'What patch level are my clients running?'.

In a web browser, navigate to https:\\your_Linux_server and authenticate with the credentials provided in Chapter 3.2.

4.1.1 Import Initial Dashboards

First you will need to create an index. If you would like to use the pre-made dashboards, the import process creates the index for you.

The dashboard and visualisation objects are contained within a JSON file and can be easily imported by clicking ‘Management’ -> ‘Saved Objects’. Please follow the steps in Figure 1, and the JSON files are located in Chapter 4 Files\dashboard 'version'.json.

Importing Objects

Figure 1 - Steps to import objects

A number of the dashboards should automatically be visible under the ‘Dashboard’ tab on the left-hand side.

4.1.2 Check you are receiving logs

Click on the 'Dashboard' tab, on the left-hand side then select 'LME Status Dashboard'. This will show a dashboard similar to Figure 2 (although the graphs will have less data on them).

LME Status Dashboard

Figure 2 - The LME Status Dashboard

In the top right hand corner, click on 'Last 15 minutes' and select Today. This will change the date range to only include todays data, and the dashboard will then have an accurate representation of machines that have been sending logs. Changing to 'Last 7 days' will be useful in the future to visualise logs over time. Please see Figure 3 below.

Time Range

Figure 3 - Time range filter

4.2 Learning how to use Kibana

If you have never used Kibana before, Elasticsearch have provided a number of videos exploring the features of Kibana and how to create new dashboards and analytics.

You can’t perform that action at this time.