Skip to main content

Elasticsearch Integration

Connect Elasticsearch to enable the AI agent to search logs and analyze data during investigations.

Capabilities

CapabilityDescription
Search LogsQuery log data with filters
Aggregate DataRun aggregations and analytics
Browse IndicesAccess available indices

Setup

1

Get Connection Details

You’ll need:
  • Elasticsearch URL
  • Authentication credentials (API key or username/password)
2

Add Integration in AccelOS

  1. Go to IntegrationsElasticsearch
  2. Enter your Elasticsearch URL
  3. Choose authentication method and enter credentials
3

Test and Save

Click Test Connection then Save.

Authentication Options

Create an API key in Kibana or via the Elasticsearch API with read permissions.

Basic Auth

Use a username and password with read access to required indices.

Example Queries

Search for errors in the application logs from the last hour

Find all 500 errors in the nginx logs

Show me logs containing "OutOfMemoryError"