Add steps to configure a PGP key for agent upgrade #984

kilfoyle · 2024-03-26T20:35:18Z

This adds instructions for air-gapped environments on how to set server.pgp.upstream_url so that Elastic Agents can access the PGP/GPG key required for upgrade.

See docs preview page.

Please let me know if I've missed anything, especially in the "Note that" section under the steps.

Closes: #980
Rel: https://github.com/elastic/sdh-beats/issues/4496

github-actions · 2024-03-26T20:35:31Z

A documentation preview will be available soon.

🔨 Buildkite builds
📚 HTML diff
📙 Preview page

Request a new doc build by commenting

Rebuild this PR: run docs-build
Rebuild this PR and all Elastic docs: run docs-build rebuild

_{run docs-build is much faster than run docs-build rebuild. A rebuild should only be needed in rare situations.}

_{If your PR continues to fail for an unknown reason, the doc build pipeline may be broken. Elastic employees can check the pipeline status here.}

kilfoyle · 2024-04-03T18:11:16Z

@lucabelluccini When you have a chance, please let me know if this new section looks okay. Thanks!

kilfoyle · 2024-04-12T02:32:07Z

@lucabelluccini trying again. Please have a look if you have a chance. Thanks!

kilfoyle · 2024-04-23T13:54:33Z

@michel-laterman , @michalpristas , @lucabelluccini
Can any of you please review and confirm that these added Configure Elastic Agents to download a PGP/GPG key from Fleet Server steps are correct?

kilfoyle · 2024-05-29T18:10:37Z

@elasticmachine run docs-build

lucabelluccini · 2024-07-29T16:03:05Z

I still think a developer should review this.

kilfoyle · 2024-07-29T16:21:18Z

Thanks @lucabelluccini

I still think a developer should review this.

@michel-laterman or @michalpristas Would either of you mind taking a look at this? Please let me know if you're not the right people to ask.

michel-laterman · 2024-07-29T19:28:12Z

I think it looks good, do we want to add anything to explain how to use the fleet-server endpoint as an alternative when distributing gpg keys (issue elastic/fleet-server#2887)?

kilfoyle · 2024-07-29T19:49:00Z

do we want to add anything to explain how to use the fleet-server endpoint as an alternative when distributing gpg keys (issue elastic/fleet-server#2887)?

@michel-laterman I've add the steps below, but I'm way out of my depth here so please let me know whatever needs fixing up.

michel-laterman · 2024-07-29T20:29:12Z

docs/en/ingest-management/fleet/air-gapped.asciidoc

+
+In an air-gapped environment, the agent won't be able to download the remote key and therefore cannot be upgraded. For versions 8.9.0 to 8.10.3, you can resolve this problem following the steps described in the associated link:https://www.elastic.co/guide/en/fleet/8.9/release-notes-8.9.0.html#known-issues-8.9.0[known issue] documentation.
+
+Starting in version 8.10.4, you can resolve this problem by configuring {agents} to download the PGP/GPG key from a custom URL specified in {fleet-server}:


I think my reading comprehension on my 1st pass wasn't great.

Just to be clear fleet-server serves PGP keys at GET /api/agents/upgrades/{major}.{minor}.{patch}/pgp-public-key
It will serve the key in FLEETSERVER_BINARY_DIR/elastic-agent-upgrade-keys/default.pgp by default, if there is no default.pgp key in the dir it will look upstream to retrieve a key; server.pgp.upstream_url can be used to configure to a custom URL for fleet-server to use.

IIRC agents will try to get the upstream key, then the fleet-server endpoint (@michalpristas please confirm), they do not use the url we add to fleet-server config

Thanks @michel-laterman! That's really clear. Here's my attempt to fix things up:

docs/en/ingest-management/fleet/air-gapped.asciidoc

lucabelluccini · 2024-08-23T17:21:29Z

docs/en/ingest-management/fleet/air-gapped.asciidoc

+
+By default, {fleet-server} serves {agents} with the key located in `FLEETSERVER_BINARY_DIR/elastic-agent-upgrade-keys/default.pgp`.
+The key is served through the endpoint `FLEETSERVER_BINARY_DIR/elastic-agent-upgrade-keys/default.pgp`.
+Accessing the endpoint requires a valid API key and the endpoint is rate limited.


Suggested change

Accessing the endpoint requires a valid API key and the endpoint is rate limited.

Accessing the endpoint requires a valid API key and the endpoint is rate limited.

I am not sure we're protecting the key via API key - can we confirm?
If yes, are Elastic Agent adding the API Key to the requests?

lucabelluccini · 2024-08-23T17:32:28Z

docs/en/ingest-management/fleet/air-gapped.asciidoc

+The key is served through the endpoint `FLEETSERVER_BINARY_DIR/elastic-agent-upgrade-keys/default.pgp`.
+Accessing the endpoint requires a valid API key and the endpoint is rate limited.
+
+If there isn't a `default.pgp` key in the `FLEETSERVER_BINARY_DIR/elastic-agent-upgrade-keys/default.pgp` directory, {fleet-server} instead will attempt to retrieve a PGP/GPG key from the URL that you can specify with the `server.pgp.upstream_url` setting.


Suggested change

If there isn't a `default.pgp` key in the `FLEETSERVER_BINARY_DIR/elastic-agent-upgrade-keys/default.pgp` directory, {fleet-server} instead will attempt to retrieve a PGP/GPG key from the URL that you can specify with the `server.pgp.upstream_url` setting.

If there isn't a `default.pgp` key in the `FLEETSERVER_BINARY_DIR/elastic-agent-upgrade-keys/default.pgp` directory, {fleet-server} instead will attempt to retrieve a PGP/GPG key from the URL that you can specify with the `server.pgp.upstream_url` setting.

Few points to clarify:

Is the default.pgp bundled with Fleet Server?

If it's bundled, air-gapped users are good to go with it.

Is the default.pgp downloaded lazily from https://artifacts.elastic.co/GPG-KEY-elastic-agent by default?

If it is the case, then air-gapped users can grant access to it (HTTP Proxy or open the firewall).

Is the default.php downloaded lazily from the URL provided via server.pgp.upstream_url setting?

If it is the case, then air-gapped users can specify a URL so that it will be downloaded from there.

It's a lazy download from server.pgp.upstream_url

To be very clear:

Is the default.pgp bundled with Fleet Server?

No, on install this file does not exist; but a user can add it manually write the file on the instance if there is 0 internet access in order to distribute it to the agents

Is the default.pgp downloaded lazily from https://artifacts.elastic.co/GPG-KEY-elastic-agent by default?

Yes, the default value of server.pgp.upstream_url is https://artifacts.elastic.co/GPG-KEY-elastic-agent; if default.pgp is not on-disk when the key is requested, fleet-server will download the file from the upstream URL, save it to disk and serve it

Is the default.php downloaded lazily from the URL provided via server.pgp.upstream_url setting?

yes, see above 😄

@michel-laterman I'm sorry to bring this one up again (I lost track of it and am doing some housekeeping now).

Is there anything I need to clarify in the text above, or do you think this is okay to merge as is?

I don't think so

lucabelluccini · 2024-08-23T17:33:38Z

Hello @kilfoyle - I've left some comments. We might need clarifications by the developers.
I've not taken the time to setup an environment to try it out yet.

kilfoyle · 2025-01-28T17:08:59Z

@lucabelluccini I need to merge any remaining open docs PRs by end of day on Wednesday. Are there any remaining changes that you'd like for this PR? I'd suggest that we merge it as is, and if we need to refine it we can do that later. What do you think?

lucabelluccini · 2025-01-28T17:22:42Z

docs/en/ingest-management/fleet/air-gapped.asciidoc

+Note that:
+
+ * `server.pgp.upstream_url` may be specified as an `http` endpoint (instead of `https`).
+ * For an `https` endpoint, the CA must be trusted by {fleet-server}.


Is there a setting where one can provide the CA to trust the TLS Certificate of the Fleet server?

@michel-laterman Can you help with Luca's question?

I believe that it would be the standard CA options

This is Fleet Server integration connecting to server.pgp.upstream_url.
Would it use the --certificate-authorities (the global one for EA)?

@michel-laterman Tagging you just in case you haven't seen Luca's question. Thanks!

Yes, it should

Thanks! I've changed the text to:

For an https endpoint, the CA for {fleet-server} to connect to server.pgp.upstream_url must be trusted by {fleet-server} using the --certificate-authorities setting that is used globally for {agent}.

lucabelluccini · 2025-01-28T17:23:30Z

docs/en/ingest-management/fleet/air-gapped.asciidoc

+
+[source,yaml]
+----
+server.pgp.upstream_url: <my-web-server-url>


It must be the full url or just the host?
E.g. http://my-web:8080/default.pgp or http://my-web:8080/?

@michel-laterman Can you help with Luca's question?

The full URL

Updated to:

In the **Custom fleet-server configurations** field, add the setting `server.pgp.upstream_url` with the full URL where the PGP/GPG key can be accessed. For example: [source,yaml] ---- server.pgp.upstream_url: <http://my-web-server:8080/default.pgp>

docs/en/ingest-management/fleet/air-gapped.asciidoc

Co-authored-by: Luca Belluccini <[email protected]>

docs/en/ingest-management/fleet/air-gapped.asciidoc

karenzone

LGTM

kilfoyle · 2025-01-29T14:43:18Z

I'm going to merge this since the docs freeze is tonight and any unmerged work will be lost.

* Add steps to configure a PGP key for agent upgrade * Rebuild * Add alternative of using fleet-server endpoint * fixup * Update logic based on Michel's input * Add Luca's suggestions * Update docs/en/ingest-management/fleet/air-gapped.asciidoc Co-authored-by: Luca Belluccini <[email protected]> * Update docs/en/ingest-management/fleet/air-gapped.asciidoc * Update docs/en/ingest-management/fleet/air-gapped.asciidoc * Update docs/en/ingest-management/fleet/air-gapped.asciidoc --------- Co-authored-by: Luca Belluccini <[email protected]> (cherry picked from commit 4429a6e)

* Add steps to configure a PGP key for agent upgrade * Rebuild * Add alternative of using fleet-server endpoint * fixup * Update logic based on Michel's input * Add Luca's suggestions * Update docs/en/ingest-management/fleet/air-gapped.asciidoc Co-authored-by: Luca Belluccini <[email protected]> * Update docs/en/ingest-management/fleet/air-gapped.asciidoc * Update docs/en/ingest-management/fleet/air-gapped.asciidoc * Update docs/en/ingest-management/fleet/air-gapped.asciidoc --------- Co-authored-by: Luca Belluccini <[email protected]> (cherry picked from commit 4429a6e) Co-authored-by: David Kilfoyle <[email protected]>

* Add 8.x branch to backport and mergify configs (#1311) * Add changelog for new connection issue. (#1312) * Change 'beats' namespace to 'elastic-agent' (#1315) * Update beats-agent-comparison.asciidoc (#1316) * Update beats-agent-comparison.asciidoc update root permissions fr the capabilities page * Update docs/en/ingest-management/beats-agent-comparison.asciidoc --------- Co-authored-by: David Kilfoyle <[email protected]> * Change docker link from 'beats' to 'elastic-agent' namespace (#1322) * Add docs for orphaned integrations (#1296) * Add page summarizing one-way and mutual TLS connections flow (#1324) * Add page summarizing one-way and mutual TLS connections flow * fixup * fixup * Add Fleet Server install steps on K8s and Docker (#1184) * Add Fleet Server install steps on K8s and Docker * fixup * Update docs/en/ingest-management/elastic-agent/running-on-kubernetes-managed-by-fleet.asciidoc * Update docs/en/ingest-management/elastic-agent/elastic-agent-container.asciidoc * Add 'Docker and Kubernetes' to Deployment Models page (#1334) * Add new data stream type custom component template to Fleet docs (#1335) Add new datastream type custom component template to Fleet data streams docs * Remove technical preview markers for 'unprivileged' mode (#1341) * Add Fleet & Agent 8.15.2 Release Notes (#1340) * Add Fleet & Agent 8.15.2 Release Notes * Add Fleet contents * Add Beats interrupted connection bug * Fix standalone agent K8s manifest link to include patch level (#1344) * Fix standalone agent K8s manifest link to include patch level * Update docs/en/ingest-management/elastic-agent/running-on-kubernetes-standalone.asciidoc Co-authored-by: Julien Mailleret <[email protected]> --------- Co-authored-by: Julien Mailleret <[email protected]> * Add restriction about containerized agent on Windows (#1351) * [Fleet/EA] Logstash & Kafka Outputs refresh (#1306) * Update output-logstash.asciidoc * Update output-kafka.asciidoc * Update fleet-settings-output-kafka.asciidoc * Update fleet-settings-output-logstash.asciidoc * Update output-logstash.asciidoc * Update docs/en/ingest-management/fleet/fleet-settings-output-kafka.asciidoc Co-authored-by: David Kilfoyle <[email protected]> * Update docs/en/ingest-management/elastic-agent/configuration/outputs/output-kafka.asciidoc Co-authored-by: David Kilfoyle <[email protected]> * Update docs/en/ingest-management/elastic-agent/configuration/outputs/output-logstash.asciidoc Co-authored-by: David Kilfoyle <[email protected]> * Update docs/en/ingest-management/elastic-agent/configuration/outputs/output-logstash.asciidoc Co-authored-by: David Kilfoyle <[email protected]> * Update docs/en/ingest-management/elastic-agent/configuration/outputs/output-kafka.asciidoc Co-authored-by: David Kilfoyle <[email protected]> * Update docs/en/ingest-management/fleet/fleet-settings-output-kafka.asciidoc Co-authored-by: David Kilfoyle <[email protected]> --------- Co-authored-by: David Kilfoyle <[email protected]> * Add note about elliptic-curve restriction (#1350) * Add note about elliptic-curve restriction * Update note and include for both TLS and mTLS * Update env variables for ES authentication (#1356) This is to bring the docs in line with the change in elastic/elastic-agent#5536. * Add docs for advanced monitoring options (#1361) * Add docs for advanced monitoring options * Remove the 'override the default monitoring port' section * Address Craig's comments * Update monitor-elastic-agent.asciidoc (#1365) Correction to typo on Email connector name. SMPT, should read SMTP * Fix uninstall warning about current directory (#1368) * Fix uninstall warning about current dir * fixup * Add missing environment variables for container setup (#1354) * Add missing environment variables for container setup * Add more missing settings * fixup * fixup * fixup * fixup * Remove FLEET_HEADER & FLEET_KIBANA_HEADER * [DOCS] Refine docs about EA > Kafka > LS > ES (#1374) * [DOCS] Refine docs about EA > Kafka > LS > ES * Update fleet-settings-output-kafka.asciidoc * Update docs/en/ingest-management/elastic-agent/configuration/outputs/output-kafka.asciidoc --------- Co-authored-by: David Kilfoyle <[email protected]> * Add documentation in add_cloud_metadata processor about the usage of BEATS_ADD_CLOUD_METADATA_PROVIDERS env var (#1380) * Add documentation in add_cloud_metadata processor about the usage of env var BEATS_ADD_CLOUD_METADATA_PROVIDERS * Update docs/en/ingest-management/processors/processor-add_cloud_metadata.asciidoc Co-authored-by: David Kilfoyle <[email protected]> --------- Co-authored-by: David Kilfoyle <[email protected]> * Add docs for 'delete unenrolled agents' (#1383) * Add docs for 'delete unenrolled agents' * Update docs/en/ingest-management/fleet/fleet-settings.asciidoc Co-authored-by: Julia Bardi <[email protected]> --------- Co-authored-by: Julia Bardi <[email protected]> * Add Fleet & Agent 8.15.3 Release Notes (#1381) * Add note: integration-level outputs must be at same sub level (#1389) * Update elastic-agent-kubernetes-autodiscovery.asciidoc (#1391) (#1392) Fixed a typo and use autodiscover instead of autodiscovery, as this is the term used in Filebeat doc (in most places). (cherry picked from commit 5cf3685) Co-authored-by: Frederic Dartayre <[email protected]> * Add 8.16 branch to backport and mergify configs (#1385) * Add docs for dynamic topics in Kafka output (#1384) * Add known issue for 8.15.x memory increase. (#1403) * Add known issue for 8.15.x memory increase. * Apply suggestions from code review Co-authored-by: David Kilfoyle <[email protected]> --------- Co-authored-by: David Kilfoyle <[email protected]> * Update .mergify.yml (#1407) * Fix API docs link (#1415) * Update docs version of reference.yml and improve header section (#1416) * Update docs version of reference.yml and improve header section * Update docs/en/ingest-management/elastic-agent/configuration/yaml/elastic-agent-reference-yaml.asciidoc * Add documentation for elastic-agent-cert-key-passphrase option (#1413) * Add documentation for elastic-agent-cert-key-passphrase option * Add the setting throughout the docs * Update docs/en/ingest-management/security/certificates.asciidoc * Update docs/en/ingest-management/commands.asciidoc * Update docs/en/ingest-management/commands.asciidoc * Update docs/en/ingest-management/elastic-agent/configuration/env/shared-env.asciidoc * Update docs/en/ingest-management/security/certificates.asciidoc --------- Co-authored-by: David Kilfoyle <[email protected]> Co-authored-by: David Kilfoyle <[email protected]> * Adding troubleshooting section for Elastic Agent on Kubernetes and Kustomize (#1409) Co-authored-by: Brandon Morelli <[email protected]> Co-authored-by: David Kilfoyle <[email protected]> Co-authored-by: Andrew Gizas <[email protected]> * Add a note about the agent status table limit of 10k records (#1428) * Add note about agent status limited to 10k records * Update docs/en/ingest-management/fleet/monitor-elastic-agent.asciidoc * Update docs/en/ingest-management/fleet/monitor-elastic-agent.asciidoc * Move section about Logstash to bottom of Kafka output page (#1430) * Add ECS known issue for ecs@mappings and fieldless searches (#1330) * Add known issues about fieldless searches * Fix section IDs and cleanup * Add the known issue to 8.13.3 and 8.13.4 All 8.13.x releases are affected. * Update docs/en/ingest-management/release-notes/release-notes-8.13.asciidoc Co-authored-by: David Kilfoyle <[email protected]> * Apply suggestion from reviewers --------- Co-authored-by: David Kilfoyle <[email protected]> * Clarification of MSI Upgrading Behavior (#1349) (#1440) Co-authored-by: David Kilfoyle <[email protected]> (cherry picked from commit 277e29d) Co-authored-by: Thomas Youngs <[email protected]> * Add docs for installing agent using Helm (#1375) * Add docs for installing agent using Helm * Fixup * Add link to examples; Note to use 8.16 branch * Address Karen's feedback * Add link to Helm install from 'Deployment models' page * Update Kafka Output settings documentation to indicate minimum version value for Kafka 4.0 (#1445) * Update the elastic-agent resource consumption docs (#1414) Update the installation page of elastic-agent by adding the resource usage consumption we observed in our lab environments. Signed-off-by: Alexandros Sapranidis <[email protected]> Co-authored-by: Craig MacKenzie <[email protected]> Co-authored-by: David Kilfoyle <[email protected]> * Wording tweak to agent resource requirements table (#1452) * Add Fleet & Agent 8.16.0 Release Notes (#1412) * Add Fleet & Agent 8.16.0 Release Notes * Add agent items * Add Fleet contents * Add agent and fleet-server items from BC3 * Add descriptions from feature summary issue * Update docs/en/ingest-management/release-notes/release-notes-8.16.asciidoc Co-authored-by: Craig MacKenzie <[email protected]> * Update docs/en/ingest-management/release-notes/release-notes-8.16.asciidoc Co-authored-by: Craig MacKenzie <[email protected]> * Update docs/en/ingest-management/release-notes/release-notes-8.16.asciidoc Co-authored-by: Kyle Pollich <[email protected]> * Update docs/en/ingest-management/release-notes/release-notes-8.16.asciidoc Co-authored-by: Kyle Pollich <[email protected]> * Update docs/en/ingest-management/release-notes/release-notes-8.16.asciidoc Co-authored-by: Kyle Pollich <[email protected]> * Update docs/en/ingest-management/release-notes/release-notes-8.16.asciidoc Co-authored-by: Kyle Pollich <[email protected]> * Update docs/en/ingest-management/release-notes/release-notes-8.16.asciidoc Co-authored-by: Kyle Pollich <[email protected]> * Update docs/en/ingest-management/release-notes/release-notes-8.16.asciidoc Co-authored-by: Kyle Pollich <[email protected]> * Update docs/en/ingest-management/release-notes/release-notes-8.16.asciidoc Co-authored-by: Kyle Pollich <[email protected]> * Update docs/en/ingest-management/release-notes/release-notes-8.16.asciidoc Co-authored-by: Kyle Pollich <[email protected]> * Update docs/en/ingest-management/release-notes/release-notes-8.16.asciidoc * Update release-notes-8.16.asciidoc --------- Co-authored-by: Craig MacKenzie <[email protected]> Co-authored-by: Kyle Pollich <[email protected]> * Add Fleet & Agent 8.15.4 Release Notes (#1417) * Add Fleet & Agent 8.15.4 Release Notes * Add Fleet & Agent 8.15.4 Release Notes * Update release-notes-8.15.asciidoc * Update docs/en/ingest-management/release-notes/release-notes-8.15.asciidoc --------- Co-authored-by: Pierre HILBERT <[email protected]> Co-authored-by: Karen Metts <[email protected]> * Update size on disk figures for Elastic Agent (#1453) * Update size on disk figures for Elastic Agent * Update install-elastic-agent.asciidoc * Fix link to 8.15.x memory queue issue in Beats. (#1464) * Upgrading MSI installation (#1467) * Upgrading MSI installation * Update docs/en/ingest-management/elastic-agent/install-agent-msi.asciidoc --------- Co-authored-by: David Kilfoyle <[email protected]> * Update bulk_reassign_agents_request to include batchSize body parameter (#1465) This change documents the ability to leverage a batchSize body parameter for the bulk_reassign_agents_request which was introduced in the following PR: elastic/kibana#134565 This will help align the documentation with the Kibana API docs: https://www.elastic.co/guide/en/fleet/current/fleet-apis.html#bulkReassignAgents * Update output-elasticsearch.asciidoc (#1457) (#1478) * Update output-elasticsearch.asciidoc * Update docs/en/ingest-management/elastic-agent/configuration/outputs/output-elasticsearch.asciidoc --------- Co-authored-by: David Kilfoyle <[email protected]> (cherry picked from commit 7fca79c) Co-authored-by: Khushi Jain <[email protected]> * Add 8.17 branch to backport and mergify configs (#1488) * Add Fleet & Agent 8.16.1 Release Notes (#1486) * Add Fleet & Agent 8.16.1 Release Notes * Fix ID * Add mention of reusable integration policies (#1492) * Add mention of reusable integration policies * Update agent-policies.asciidoc * Update add-integration-to-policy.asciidoc * Add Fleet & Agent 8.15.5 Release Notes (#1496) * Fixed very small typo in air-gapped.asciidoc (#1504) (#1506) Typo fix: "om" replaced with "in" (cherry picked from commit c5c1277) Co-authored-by: Frederik Berg <[email protected]> * Add docs for running unprivileged agent as existing user/group (#1505) * Add docs for running unprivileged agent as existing user/group * fixup * Add known issues for 'no agent found', Agent uninstall exception (#1483) * Add known issue for 'no agent found' * add agent uninstall issue * Fixup * Add 'Fleet-managed' to second issue * Indicate that workaround is pending * Update workaround * fix Kibana attribute * Use correct technical preview tags (#1514) * Fix Elastic-Agent event logger documentation (#1520) * Add Fleet & Agent 8.17.0 Release Notes (#1498) * Add Fleet & Agent 8.17.0 Release Notes * Add remaining agent contents * fixup * Add latest items * Update docs/en/ingest-management/release-notes/release-notes-8.17.asciidoc Co-authored-by: Craig MacKenzie <[email protected]> * Update docs/en/ingest-management/release-notes/release-notes-8.17.asciidoc Co-authored-by: Craig MacKenzie <[email protected]> * Update docs/en/ingest-management/release-notes/release-notes-8.17.asciidoc Co-authored-by: Craig MacKenzie <[email protected]> * Update docs/en/ingest-management/release-notes/release-notes-8.17.asciidoc Co-authored-by: Craig MacKenzie <[email protected]> * Update docs/en/ingest-management/release-notes/release-notes-8.17.asciidoc Co-authored-by: Craig MacKenzie <[email protected]> * Update docs/en/ingest-management/release-notes/release-notes-8.17.asciidoc Co-authored-by: Craig MacKenzie <[email protected]> --------- Co-authored-by: Craig MacKenzie <[email protected]> * Add agent upgrade steps for DEB & RPM (#1510) * Fix version compatibility statement (#1537) * Add download steps for Wolfi container images (#1544) * Fix typo in filestream docs link (#1545) (#1552) (cherry picked from commit 6b0f849) Co-authored-by: Ian Lee <[email protected]> * Add placeholder for 'transform to OTel Collector' docs (#1550) * Add placeholder for 'transform to OTel Collector' docs * Add include statement (commented out) * Update docs/en/ingest-management/elastic-agent/otel-agent-transform.asciidoc Co-authored-by: shainaraskas <[email protected]> --------- Co-authored-by: shainaraskas <[email protected]> * Add Fleet & Agent 8.16.2 Release Notes (#1538) * Add Fleet & Agent 8.16.2 Release Notes * touchup * Update wolfi note * Add PowerShell variant to MSI install docs (#1548) * Add PowerShell variant to MSI install docs * Change 'Bash' to 'default command prompt' * change nesting of the variant command bullets * re-add URL description * Add known issue for orphaned status blocking upgrades (#1566) * Add known issue for orphaned status blocking upgrades * Update docs/en/ingest-management/release-notes/release-notes-8.16.asciidoc * Update docs/en/ingest-management/release-notes/release-notes-8.16.asciidoc * Update docs/en/ingest-management/release-notes/release-notes-8.16.asciidoc * Update docs/en/ingest-management/release-notes/release-notes-8.17.asciidoc --------- Co-authored-by: David Kilfoyle <[email protected]> * Update policy scaling recommendation (#1563) * Update policy scaling recommendation * Add note about spaces support * Add small doc about running a standalone agent in otel mode (#1572) * Add small doc about running a standalone agent in otel mode --------- Co-authored-by: David Kilfoyle <[email protected]> * Update troubleshooting.asciidoc (#1573) (#1575) * Update troubleshooting.asciidoc Added info about what to look for if an agent gets reenrolled on a Kubernetes cluster * Update docs/en/ingest-management/troubleshooting/troubleshooting.asciidoc * Update docs/en/ingest-management/troubleshooting/troubleshooting.asciidoc * Update docs/en/ingest-management/troubleshooting/troubleshooting.asciidoc --------- Co-authored-by: David Kilfoyle <[email protected]> (cherry picked from commit 300b660) Co-authored-by: BBQigniter <[email protected]> * Updated docs about the new flag --skip-fleet-audit to skip fleet audit/unenroll during agent uninstall (#1525) * Added flags to skip audit/unenroll with fleet * Added flags to skip audit/unenroll with fleet * Added flags to skip audit/unenroll with fleet Co-authored-by: David Kilfoyle <[email protected]> --------- Co-authored-by: David Kilfoyle <[email protected]> * Fix typo in k8s standalone agent example (#1578) * Enable new agent -> OTel-agent transform docs (#1579) * Fix screenshot: 1231 (#1581) * Fix screenshot: 1232 (#1582) * Fix screenshot: 1233 (#1583) * Fix screenshot: 1237 (#1586) * Fix steps and screencap for agent diagnostics (#1587) * Fix screenshot: 1234 (#1585) * Fix screenshot: 1240 (#1589) * Fix screenshot: 1239 (#1588) * Remove TLSv1.0 from supported protocols (#1609) * Add details for Wolfi install image (#1610) * Add details for Wolfi install image * Update docs/en/ingest-management/elastic-agent/elastic-agent-container.asciidoc * known issue for when an integration level output is set to default (#1615) * Add known issue for integration default output * Add known issue for default integration-level output * Update docs/en/ingest-management/release-notes/release-notes-8.16.asciidoc Co-authored-by: Karen Metts <[email protected]> --------- Co-authored-by: Karen Metts <[email protected]> * Update agent-policies.asciidoc (#1527) (#1624) * Update agent-policies.asciidoc Defend Integration ignores the Custom Fields added in Agent Policy UI as it uses the advanced settings below in the Elastic Defend Integration configuration: - `windows.advanced.document_enrichment.fields` - `mac.advanced.document_enrichment.fields` - `linux.advanced.document_enrichment.fields` * Update docs/en/ingest-management/agent-policies.asciidoc Accepting the suggestions! Thanks! Co-authored-by: David Kilfoyle <[email protected]> --------- Co-authored-by: David Kilfoyle <[email protected]> (cherry picked from commit 930b490) Co-authored-by: Insuk (Chris) Cho <[email protected]> * Explain why Agent needs to connect to Kibana (#1627) * Explain why Agent needs to connect to Kibana * Update docs/en/ingest-management/fleet/add-fleet-server-on-prem.asciidoc --------- Co-authored-by: David Kilfoyle <[email protected]> * Update data streams ILM tutorials and associated warnings (#1623) * Draft: data streams scenarios * Add draft for Scenario 1 * Add draft for Scenario 2 * cleanup, and add warning to best practices page * Update docs to indicate that providers are no longer enabled by default (#1530) * Update docs to indicate that providers are no longer enabled by default * Add changes from Blake's review * touchup * Update docs/en/ingest-management/elastic-agent/configuration/providers/elastic-agent-providers.asciidoc Co-authored-by: Blake Rouse <[email protected]> * Update docs/en/ingest-management/elastic-agent/configuration/providers/elastic-agent-providers.asciidoc Co-authored-by: Blake Rouse <[email protected]> * Address Blake's comments * Update docs/en/ingest-management/elastic-agent/configuration/providers/elastic-agent-providers.asciidoc Co-authored-by: Blake Rouse <[email protected]> * Update docs/en/ingest-management/elastic-agent/configuration/providers/elastic-agent-providers.asciidoc Co-authored-by: Blake Rouse <[email protected]> --------- Co-authored-by: Blake Rouse <[email protected]> * Add Fleet & Agent 8.16.3 Release Notes (#1614) * Add Fleet & Agent 8.16.3 Release Notes * typo * Add Fleet & Agent 8.17.1 Release Notes (#1612) * Add restrictions for synthetic `_source` (#1622) * Add restrictions for synthetic * Fixes for Martijn's review * Remove note about synthetic _source not supported on TSDS * Add warning about Elastic Defend with remote ES output (#1639) * [Reusable integration] GA on 8.16 requires Enterprise License (#1645) * [Reusable integration] GA on 8.16 requires Enterprise License * Update docs/en/ingest-management/agent-policies.asciidoc * Update docs/en/ingest-management/agent-policies.asciidoc --------- Co-authored-by: David Kilfoyle <[email protected]> * Doc: Add content for Ingest Overview (#1644) * Fleet Server on kubernetes document proposal (#1518) * fleet server on kubernetes document added --------- Co-authored-by: Brandon Morelli <[email protected]> Co-authored-by: Lara Moreno <[email protected]> Co-authored-by: David Kilfoyle <[email protected]> Co-authored-by: Mikołaj Świątek <[email protected]> * Add steps to configure a PGP key for agent upgrade (#984) * Add steps to configure a PGP key for agent upgrade * Rebuild * Add alternative of using fleet-server endpoint * fixup * Update logic based on Michel's input * Add Luca's suggestions * Update docs/en/ingest-management/fleet/air-gapped.asciidoc Co-authored-by: Luca Belluccini <[email protected]> * Update docs/en/ingest-management/fleet/air-gapped.asciidoc * Update docs/en/ingest-management/fleet/air-gapped.asciidoc * Update docs/en/ingest-management/fleet/air-gapped.asciidoc --------- Co-authored-by: Luca Belluccini <[email protected]> * --fleet-server-cert-key-passphrase-path -> --fleet-server-cert-key-passphrase (#1658) * github-action: Add AsciiDoc freeze warning (#1648) * github-action: Add AsciiDoc freeze warning * github-action: Add AsciiDoc freeze warning * Add 8.18 branch to backport and mergify configs (#1664) * Add Fleet & Agent 8.16.4 Release Notes (#1669) * Add Fleet & Agent 8.16.4 Release Notes * Add Fleet & Agent 8.16.4 Release Notes * Add four new commits * Revert index file * Add Fleet & Agent 8.17.2 Release Notes (#1670) * Add Fleet & Agent 8.17.2 Release Notes * Add Go version bump #6686 * Update docs/en/ingest-management/release-notes/release-notes-8.17.asciidoc Co-authored-by: Craig MacKenzie <[email protected]> --------- Co-authored-by: Craig MacKenzie <[email protected]> * Add known issue for Kibana OOM crashes (#1672) * Update commands.asciidoc (#1668) Remove the `--non-interactive` flag from the `elastic-agent enroll` command because its not available * [DOCS] Warn LS pipeline should not modify fields coming from EA (#1667) * [DOCS] Warn LS pipeline should not modify fields coming from EA Warn LS pipeline should not modify fields coming from EA Modifying data coming from EA can prevent the ingest pipelines on Elasticsearch side associated to the integrations in use in EA to work correctly. * Update docs/en/ingest-management/elastic-agent/configuration/outputs/output-logstash.asciidoc --------- Co-authored-by: David Kilfoyle <[email protected]> * Update Fleet docs for new 'read' access roles (#1697) * Update Fleet docs for new 'read' access roles * fixup * Fix link in 8.17.2 release notes (#1704) * Update fleet-agent-proxy-package-registry.asciidoc (#1722) * Update fleet-agent-proxy-package-registry.asciidoc * Update docs/en/ingest-management/fleet-agent-proxy-package-registry.asciidoc --------- Co-authored-by: David Kilfoyle <[email protected]> * Add Fleet & Agent 8.18.0 Release Notes (#1665) * Add Fleet & Agent 8.18.0 Release Notes * Add second batch * fix PR link * Add BC4 agent item * Update docs/en/ingest-management/release-notes/release-notes-8.18.asciidoc * Update docs/en/ingest-management/release-notes/release-notes-8.17.asciidoc * add latest entries * Update docs/en/ingest-management/release-notes/release-notes-8.18.asciidoc Co-authored-by: Eric Beahan <[email protected]> * Update docs/en/ingest-management/release-notes/release-notes-8.18.asciidoc Co-authored-by: Eric Beahan <[email protected]> * Update docs/en/ingest-management/release-notes/release-notes-8.18.asciidoc Co-authored-by: Craig MacKenzie <[email protected]> * Update docs/en/ingest-management/release-notes/release-notes-8.18.asciidoc Co-authored-by: Craig MacKenzie <[email protected]> * Update docs/en/ingest-management/release-notes/release-notes-8.18.asciidoc Co-authored-by: Kyle Pollich <[email protected]> * Update docs/en/ingest-management/release-notes/release-notes-8.18.asciidoc Co-authored-by: Kyle Pollich <[email protected]> --------- Co-authored-by: Eric Beahan <[email protected]> Co-authored-by: Craig MacKenzie <[email protected]> Co-authored-by: Kyle Pollich <[email protected]> * Update Elastic Agent binary sizes (#1777) * Update warning for Elastic Defend with Remote ES cluster (#1759) * Update warning for Elastic Defend with Remote ES cluster * Remove details * [Backport] Add note about remote ES error with Fleet Server (#1786) * github-action: add supported GitHub commands (#1796) * Add Fleet and Agent release notes 8.18.2 --------- Signed-off-by: Alexandros Sapranidis <[email protected]> Co-authored-by: Karen Metts <[email protected]> Co-authored-by: Craig MacKenzie <[email protected]> Co-authored-by: David Kilfoyle <[email protected]> Co-authored-by: nima <[email protected]> Co-authored-by: Jill Guyonnet <[email protected]> Co-authored-by: Julien Mailleret <[email protected]> Co-authored-by: Luca Belluccini <[email protected]> Co-authored-by: Mikołaj Świątek <[email protected]> Co-authored-by: tammytorbert <[email protected]> Co-authored-by: Michael Katsoulis <[email protected]> Co-authored-by: Julia Bardi <[email protected]> Co-authored-by: Frederic Dartayre <[email protected]> Co-authored-by: Brandon Morelli <[email protected]> Co-authored-by: Lee E Hinman <[email protected]> Co-authored-by: David Kilfoyle <[email protected]> Co-authored-by: Edu González de la Herrán <[email protected]> Co-authored-by: Brandon Morelli <[email protected]> Co-authored-by: Andrew Gizas <[email protected]> Co-authored-by: Maurizio Branca <[email protected]> Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com> Co-authored-by: Thomas Youngs <[email protected]> Co-authored-by: William Easton <[email protected]> Co-authored-by: Alexandros Sapranidis <[email protected]> Co-authored-by: Geoff Rowland <[email protected]> Co-authored-by: Kyle Pollich <[email protected]> Co-authored-by: Pierre HILBERT <[email protected]> Co-authored-by: Amit Kanfer <[email protected]> Co-authored-by: Austin Smith <[email protected]> Co-authored-by: Khushi Jain <[email protected]> Co-authored-by: Frederik Berg <[email protected]> Co-authored-by: Tiago Queiroz <[email protected]> Co-authored-by: Ian Lee <[email protected]> Co-authored-by: shainaraskas <[email protected]> Co-authored-by: Michel Laterman <[email protected]> Co-authored-by: Paolo Chilà <[email protected]> Co-authored-by: BBQigniter <[email protected]> Co-authored-by: Rohit <[email protected]> Co-authored-by: Insuk (Chris) Cho <[email protected]> Co-authored-by: Blake Rouse <[email protected]> Co-authored-by: Lara Moreno <[email protected]> Co-authored-by: Jan Calanog <[email protected]> Co-authored-by: Mirko Bez <[email protected]> Co-authored-by: Eric Beahan <[email protected]> Co-authored-by: Victor Martinez <[email protected]>

* Add 8.x branch to backport and mergify configs (#1311) * Add changelog for new connection issue. (#1312) * Change 'beats' namespace to 'elastic-agent' (#1315) * Update beats-agent-comparison.asciidoc (#1316) * Update beats-agent-comparison.asciidoc update root permissions fr the capabilities page * Update docs/en/ingest-management/beats-agent-comparison.asciidoc --------- Co-authored-by: David Kilfoyle <[email protected]> * Change docker link from 'beats' to 'elastic-agent' namespace (#1322) * Add docs for orphaned integrations (#1296) * Add page summarizing one-way and mutual TLS connections flow (#1324) * Add page summarizing one-way and mutual TLS connections flow * fixup * fixup * Add Fleet Server install steps on K8s and Docker (#1184) * Add Fleet Server install steps on K8s and Docker * fixup * Update docs/en/ingest-management/elastic-agent/running-on-kubernetes-managed-by-fleet.asciidoc * Update docs/en/ingest-management/elastic-agent/elastic-agent-container.asciidoc * Add 'Docker and Kubernetes' to Deployment Models page (#1334) * Add new data stream type custom component template to Fleet docs (#1335) Add new datastream type custom component template to Fleet data streams docs * Remove technical preview markers for 'unprivileged' mode (#1341) * Add Fleet & Agent 8.15.2 Release Notes (#1340) * Add Fleet & Agent 8.15.2 Release Notes * Add Fleet contents * Add Beats interrupted connection bug * Fix standalone agent K8s manifest link to include patch level (#1344) * Fix standalone agent K8s manifest link to include patch level * Update docs/en/ingest-management/elastic-agent/running-on-kubernetes-standalone.asciidoc Co-authored-by: Julien Mailleret <[email protected]> --------- Co-authored-by: Julien Mailleret <[email protected]> * Add restriction about containerized agent on Windows (#1351) * [Fleet/EA] Logstash & Kafka Outputs refresh (#1306) * Update output-logstash.asciidoc * Update output-kafka.asciidoc * Update fleet-settings-output-kafka.asciidoc * Update fleet-settings-output-logstash.asciidoc * Update output-logstash.asciidoc * Update docs/en/ingest-management/fleet/fleet-settings-output-kafka.asciidoc Co-authored-by: David Kilfoyle <[email protected]> * Update docs/en/ingest-management/elastic-agent/configuration/outputs/output-kafka.asciidoc Co-authored-by: David Kilfoyle <[email protected]> * Update docs/en/ingest-management/elastic-agent/configuration/outputs/output-logstash.asciidoc Co-authored-by: David Kilfoyle <[email protected]> * Update docs/en/ingest-management/elastic-agent/configuration/outputs/output-logstash.asciidoc Co-authored-by: David Kilfoyle <[email protected]> * Update docs/en/ingest-management/elastic-agent/configuration/outputs/output-kafka.asciidoc Co-authored-by: David Kilfoyle <[email protected]> * Update docs/en/ingest-management/fleet/fleet-settings-output-kafka.asciidoc Co-authored-by: David Kilfoyle <[email protected]> --------- Co-authored-by: David Kilfoyle <[email protected]> * Add note about elliptic-curve restriction (#1350) * Add note about elliptic-curve restriction * Update note and include for both TLS and mTLS * Update env variables for ES authentication (#1356) This is to bring the docs in line with the change in elastic/elastic-agent#5536. * Add docs for advanced monitoring options (#1361) * Add docs for advanced monitoring options * Remove the 'override the default monitoring port' section * Address Craig's comments * Update monitor-elastic-agent.asciidoc (#1365) Correction to typo on Email connector name. SMPT, should read SMTP * Fix uninstall warning about current directory (#1368) * Fix uninstall warning about current dir * fixup * Add missing environment variables for container setup (#1354) * Add missing environment variables for container setup * Add more missing settings * fixup * fixup * fixup * fixup * Remove FLEET_HEADER & FLEET_KIBANA_HEADER * [DOCS] Refine docs about EA > Kafka > LS > ES (#1374) * [DOCS] Refine docs about EA > Kafka > LS > ES * Update fleet-settings-output-kafka.asciidoc * Update docs/en/ingest-management/elastic-agent/configuration/outputs/output-kafka.asciidoc --------- Co-authored-by: David Kilfoyle <[email protected]> * Add documentation in add_cloud_metadata processor about the usage of BEATS_ADD_CLOUD_METADATA_PROVIDERS env var (#1380) * Add documentation in add_cloud_metadata processor about the usage of env var BEATS_ADD_CLOUD_METADATA_PROVIDERS * Update docs/en/ingest-management/processors/processor-add_cloud_metadata.asciidoc Co-authored-by: David Kilfoyle <[email protected]> --------- Co-authored-by: David Kilfoyle <[email protected]> * Add docs for 'delete unenrolled agents' (#1383) * Add docs for 'delete unenrolled agents' * Update docs/en/ingest-management/fleet/fleet-settings.asciidoc Co-authored-by: Julia Bardi <[email protected]> --------- Co-authored-by: Julia Bardi <[email protected]> * Add Fleet & Agent 8.15.3 Release Notes (#1381) * Add note: integration-level outputs must be at same sub level (#1389) * Update elastic-agent-kubernetes-autodiscovery.asciidoc (#1391) (#1392) Fixed a typo and use autodiscover instead of autodiscovery, as this is the term used in Filebeat doc (in most places). (cherry picked from commit 5cf3685) Co-authored-by: Frederic Dartayre <[email protected]> * Add 8.16 branch to backport and mergify configs (#1385) * Add docs for dynamic topics in Kafka output (#1384) * Add known issue for 8.15.x memory increase. (#1403) * Add known issue for 8.15.x memory increase. * Apply suggestions from code review Co-authored-by: David Kilfoyle <[email protected]> --------- Co-authored-by: David Kilfoyle <[email protected]> * Update .mergify.yml (#1407) * Fix API docs link (#1415) * Update docs version of reference.yml and improve header section (#1416) * Update docs version of reference.yml and improve header section * Update docs/en/ingest-management/elastic-agent/configuration/yaml/elastic-agent-reference-yaml.asciidoc * Add documentation for elastic-agent-cert-key-passphrase option (#1413) * Add documentation for elastic-agent-cert-key-passphrase option * Add the setting throughout the docs * Update docs/en/ingest-management/security/certificates.asciidoc * Update docs/en/ingest-management/commands.asciidoc * Update docs/en/ingest-management/commands.asciidoc * Update docs/en/ingest-management/elastic-agent/configuration/env/shared-env.asciidoc * Update docs/en/ingest-management/security/certificates.asciidoc --------- Co-authored-by: David Kilfoyle <[email protected]> Co-authored-by: David Kilfoyle <[email protected]> * Adding troubleshooting section for Elastic Agent on Kubernetes and Kustomize (#1409) Co-authored-by: Brandon Morelli <[email protected]> Co-authored-by: David Kilfoyle <[email protected]> Co-authored-by: Andrew Gizas <[email protected]> * Add a note about the agent status table limit of 10k records (#1428) * Add note about agent status limited to 10k records * Update docs/en/ingest-management/fleet/monitor-elastic-agent.asciidoc * Update docs/en/ingest-management/fleet/monitor-elastic-agent.asciidoc * Move section about Logstash to bottom of Kafka output page (#1430) * Add ECS known issue for ecs@mappings and fieldless searches (#1330) * Add known issues about fieldless searches * Fix section IDs and cleanup * Add the known issue to 8.13.3 and 8.13.4 All 8.13.x releases are affected. * Update docs/en/ingest-management/release-notes/release-notes-8.13.asciidoc Co-authored-by: David Kilfoyle <[email protected]> * Apply suggestion from reviewers --------- Co-authored-by: David Kilfoyle <[email protected]> * Clarification of MSI Upgrading Behavior (#1349) (#1440) Co-authored-by: David Kilfoyle <[email protected]> (cherry picked from commit 277e29d) Co-authored-by: Thomas Youngs <[email protected]> * Add docs for installing agent using Helm (#1375) * Add docs for installing agent using Helm * Fixup * Add link to examples; Note to use 8.16 branch * Address Karen's feedback * Add link to Helm install from 'Deployment models' page * Update Kafka Output settings documentation to indicate minimum version value for Kafka 4.0 (#1445) * Update the elastic-agent resource consumption docs (#1414) Update the installation page of elastic-agent by adding the resource usage consumption we observed in our lab environments. Signed-off-by: Alexandros Sapranidis <[email protected]> Co-authored-by: Craig MacKenzie <[email protected]> Co-authored-by: David Kilfoyle <[email protected]> * Wording tweak to agent resource requirements table (#1452) * Add Fleet & Agent 8.16.0 Release Notes (#1412) * Add Fleet & Agent 8.16.0 Release Notes * Add agent items * Add Fleet contents * Add agent and fleet-server items from BC3 * Add descriptions from feature summary issue * Update docs/en/ingest-management/release-notes/release-notes-8.16.asciidoc Co-authored-by: Craig MacKenzie <[email protected]> * Update docs/en/ingest-management/release-notes/release-notes-8.16.asciidoc Co-authored-by: Craig MacKenzie <[email protected]> * Update docs/en/ingest-management/release-notes/release-notes-8.16.asciidoc Co-authored-by: Kyle Pollich <[email protected]> * Update docs/en/ingest-management/release-notes/release-notes-8.16.asciidoc Co-authored-by: Kyle Pollich <[email protected]> * Update docs/en/ingest-management/release-notes/release-notes-8.16.asciidoc Co-authored-by: Kyle Pollich <[email protected]> * Update docs/en/ingest-management/release-notes/release-notes-8.16.asciidoc Co-authored-by: Kyle Pollich <[email protected]> * Update docs/en/ingest-management/release-notes/release-notes-8.16.asciidoc Co-authored-by: Kyle Pollich <[email protected]> * Update docs/en/ingest-management/release-notes/release-notes-8.16.asciidoc Co-authored-by: Kyle Pollich <[email protected]> * Update docs/en/ingest-management/release-notes/release-notes-8.16.asciidoc Co-authored-by: Kyle Pollich <[email protected]> * Update docs/en/ingest-management/release-notes/release-notes-8.16.asciidoc Co-authored-by: Kyle Pollich <[email protected]> * Update docs/en/ingest-management/release-notes/release-notes-8.16.asciidoc * Update release-notes-8.16.asciidoc --------- Co-authored-by: Craig MacKenzie <[email protected]> Co-authored-by: Kyle Pollich <[email protected]> * Add Fleet & Agent 8.15.4 Release Notes (#1417) * Add Fleet & Agent 8.15.4 Release Notes * Add Fleet & Agent 8.15.4 Release Notes * Update release-notes-8.15.asciidoc * Update docs/en/ingest-management/release-notes/release-notes-8.15.asciidoc --------- Co-authored-by: Pierre HILBERT <[email protected]> Co-authored-by: Karen Metts <[email protected]> * Update size on disk figures for Elastic Agent (#1453) * Update size on disk figures for Elastic Agent * Update install-elastic-agent.asciidoc * Fix link to 8.15.x memory queue issue in Beats. (#1464) * Upgrading MSI installation (#1467) * Upgrading MSI installation * Update docs/en/ingest-management/elastic-agent/install-agent-msi.asciidoc --------- Co-authored-by: David Kilfoyle <[email protected]> * Update bulk_reassign_agents_request to include batchSize body parameter (#1465) This change documents the ability to leverage a batchSize body parameter for the bulk_reassign_agents_request which was introduced in the following PR: elastic/kibana#134565 This will help align the documentation with the Kibana API docs: https://www.elastic.co/guide/en/fleet/current/fleet-apis.html#bulkReassignAgents * Update output-elasticsearch.asciidoc (#1457) (#1478) * Update output-elasticsearch.asciidoc * Update docs/en/ingest-management/elastic-agent/configuration/outputs/output-elasticsearch.asciidoc --------- Co-authored-by: David Kilfoyle <[email protected]> (cherry picked from commit 7fca79c) Co-authored-by: Khushi Jain <[email protected]> * Add 8.17 branch to backport and mergify configs (#1488) * Add Fleet & Agent 8.16.1 Release Notes (#1486) * Add Fleet & Agent 8.16.1 Release Notes * Fix ID * Add mention of reusable integration policies (#1492) * Add mention of reusable integration policies * Update agent-policies.asciidoc * Update add-integration-to-policy.asciidoc * Add Fleet & Agent 8.15.5 Release Notes (#1496) * Fixed very small typo in air-gapped.asciidoc (#1504) (#1506) Typo fix: "om" replaced with "in" (cherry picked from commit c5c1277) Co-authored-by: Frederik Berg <[email protected]> * Add docs for running unprivileged agent as existing user/group (#1505) * Add docs for running unprivileged agent as existing user/group * fixup * Add known issues for 'no agent found', Agent uninstall exception (#1483) * Add known issue for 'no agent found' * add agent uninstall issue * Fixup * Add 'Fleet-managed' to second issue * Indicate that workaround is pending * Update workaround * fix Kibana attribute * Use correct technical preview tags (#1514) * Fix Elastic-Agent event logger documentation (#1520) * Add Fleet & Agent 8.17.0 Release Notes (#1498) * Add Fleet & Agent 8.17.0 Release Notes * Add remaining agent contents * fixup * Add latest items * Update docs/en/ingest-management/release-notes/release-notes-8.17.asciidoc Co-authored-by: Craig MacKenzie <[email protected]> * Update docs/en/ingest-management/release-notes/release-notes-8.17.asciidoc Co-authored-by: Craig MacKenzie <[email protected]> * Update docs/en/ingest-management/release-notes/release-notes-8.17.asciidoc Co-authored-by: Craig MacKenzie <[email protected]> * Update docs/en/ingest-management/release-notes/release-notes-8.17.asciidoc Co-authored-by: Craig MacKenzie <[email protected]> * Update docs/en/ingest-management/release-notes/release-notes-8.17.asciidoc Co-authored-by: Craig MacKenzie <[email protected]> * Update docs/en/ingest-management/release-notes/release-notes-8.17.asciidoc Co-authored-by: Craig MacKenzie <[email protected]> --------- Co-authored-by: Craig MacKenzie <[email protected]> * Add agent upgrade steps for DEB & RPM (#1510) * Fix version compatibility statement (#1537) * Add download steps for Wolfi container images (#1544) * Fix typo in filestream docs link (#1545) (#1552) (cherry picked from commit 6b0f849) Co-authored-by: Ian Lee <[email protected]> * Add placeholder for 'transform to OTel Collector' docs (#1550) * Add placeholder for 'transform to OTel Collector' docs * Add include statement (commented out) * Update docs/en/ingest-management/elastic-agent/otel-agent-transform.asciidoc Co-authored-by: shainaraskas <[email protected]> --------- Co-authored-by: shainaraskas <[email protected]> * Add Fleet & Agent 8.16.2 Release Notes (#1538) * Add Fleet & Agent 8.16.2 Release Notes * touchup * Update wolfi note * Add PowerShell variant to MSI install docs (#1548) * Add PowerShell variant to MSI install docs * Change 'Bash' to 'default command prompt' * change nesting of the variant command bullets * re-add URL description * Add known issue for orphaned status blocking upgrades (#1566) * Add known issue for orphaned status blocking upgrades * Update docs/en/ingest-management/release-notes/release-notes-8.16.asciidoc * Update docs/en/ingest-management/release-notes/release-notes-8.16.asciidoc * Update docs/en/ingest-management/release-notes/release-notes-8.16.asciidoc * Update docs/en/ingest-management/release-notes/release-notes-8.17.asciidoc --------- Co-authored-by: David Kilfoyle <[email protected]> * Update policy scaling recommendation (#1563) * Update policy scaling recommendation * Add note about spaces support * Add small doc about running a standalone agent in otel mode (#1572) * Add small doc about running a standalone agent in otel mode --------- Co-authored-by: David Kilfoyle <[email protected]> * Update troubleshooting.asciidoc (#1573) (#1575) * Update troubleshooting.asciidoc Added info about what to look for if an agent gets reenrolled on a Kubernetes cluster * Update docs/en/ingest-management/troubleshooting/troubleshooting.asciidoc * Update docs/en/ingest-management/troubleshooting/troubleshooting.asciidoc * Update docs/en/ingest-management/troubleshooting/troubleshooting.asciidoc --------- Co-authored-by: David Kilfoyle <[email protected]> (cherry picked from commit 300b660) Co-authored-by: BBQigniter <[email protected]> * Updated docs about the new flag --skip-fleet-audit to skip fleet audit/unenroll during agent uninstall (#1525) * Added flags to skip audit/unenroll with fleet * Added flags to skip audit/unenroll with fleet * Added flags to skip audit/unenroll with fleet Co-authored-by: David Kilfoyle <[email protected]> --------- Co-authored-by: David Kilfoyle <[email protected]> * Fix typo in k8s standalone agent example (#1578) * Enable new agent -> OTel-agent transform docs (#1579) * Fix screenshot: 1231 (#1581) * Fix screenshot: 1232 (#1582) * Fix screenshot: 1233 (#1583) * Fix screenshot: 1237 (#1586) * Fix steps and screencap for agent diagnostics (#1587) * Fix screenshot: 1234 (#1585) * Fix screenshot: 1240 (#1589) * Fix screenshot: 1239 (#1588) * Remove TLSv1.0 from supported protocols (#1609) * Add details for Wolfi install image (#1610) * Add details for Wolfi install image * Update docs/en/ingest-management/elastic-agent/elastic-agent-container.asciidoc * known issue for when an integration level output is set to default (#1615) * Add known issue for integration default output * Add known issue for default integration-level output * Update docs/en/ingest-management/release-notes/release-notes-8.16.asciidoc Co-authored-by: Karen Metts <[email protected]> --------- Co-authored-by: Karen Metts <[email protected]> * Update agent-policies.asciidoc (#1527) (#1624) * Update agent-policies.asciidoc Defend Integration ignores the Custom Fields added in Agent Policy UI as it uses the advanced settings below in the Elastic Defend Integration configuration: - `windows.advanced.document_enrichment.fields` - `mac.advanced.document_enrichment.fields` - `linux.advanced.document_enrichment.fields` * Update docs/en/ingest-management/agent-policies.asciidoc Accepting the suggestions! Thanks! Co-authored-by: David Kilfoyle <[email protected]> --------- Co-authored-by: David Kilfoyle <[email protected]> (cherry picked from commit 930b490) Co-authored-by: Insuk (Chris) Cho <[email protected]> * Explain why Agent needs to connect to Kibana (#1627) * Explain why Agent needs to connect to Kibana * Update docs/en/ingest-management/fleet/add-fleet-server-on-prem.asciidoc --------- Co-authored-by: David Kilfoyle <[email protected]> * Update data streams ILM tutorials and associated warnings (#1623) * Draft: data streams scenarios * Add draft for Scenario 1 * Add draft for Scenario 2 * cleanup, and add warning to best practices page * Update docs to indicate that providers are no longer enabled by default (#1530) * Update docs to indicate that providers are no longer enabled by default * Add changes from Blake's review * touchup * Update docs/en/ingest-management/elastic-agent/configuration/providers/elastic-agent-providers.asciidoc Co-authored-by: Blake Rouse <[email protected]> * Update docs/en/ingest-management/elastic-agent/configuration/providers/elastic-agent-providers.asciidoc Co-authored-by: Blake Rouse <[email protected]> * Address Blake's comments * Update docs/en/ingest-management/elastic-agent/configuration/providers/elastic-agent-providers.asciidoc Co-authored-by: Blake Rouse <[email protected]> * Update docs/en/ingest-management/elastic-agent/configuration/providers/elastic-agent-providers.asciidoc Co-authored-by: Blake Rouse <[email protected]> --------- Co-authored-by: Blake Rouse <[email protected]> * Add Fleet & Agent 8.16.3 Release Notes (#1614) * Add Fleet & Agent 8.16.3 Release Notes * typo * Add Fleet & Agent 8.17.1 Release Notes (#1612) * Add restrictions for synthetic `_source` (#1622) * Add restrictions for synthetic * Fixes for Martijn's review * Remove note about synthetic _source not supported on TSDS * Add warning about Elastic Defend with remote ES output (#1639) * [Reusable integration] GA on 8.16 requires Enterprise License (#1645) * [Reusable integration] GA on 8.16 requires Enterprise License * Update docs/en/ingest-management/agent-policies.asciidoc * Update docs/en/ingest-management/agent-policies.asciidoc --------- Co-authored-by: David Kilfoyle <[email protected]> * Doc: Add content for Ingest Overview (#1644) * Fleet Server on kubernetes document proposal (#1518) * fleet server on kubernetes document added --------- Co-authored-by: Brandon Morelli <[email protected]> Co-authored-by: Lara Moreno <[email protected]> Co-authored-by: David Kilfoyle <[email protected]> Co-authored-by: Mikołaj Świątek <[email protected]> * Add steps to configure a PGP key for agent upgrade (#984) * Add steps to configure a PGP key for agent upgrade * Rebuild * Add alternative of using fleet-server endpoint * fixup * Update logic based on Michel's input * Add Luca's suggestions * Update docs/en/ingest-management/fleet/air-gapped.asciidoc Co-authored-by: Luca Belluccini <[email protected]> * Update docs/en/ingest-management/fleet/air-gapped.asciidoc * Update docs/en/ingest-management/fleet/air-gapped.asciidoc * Update docs/en/ingest-management/fleet/air-gapped.asciidoc --------- Co-authored-by: Luca Belluccini <[email protected]> * --fleet-server-cert-key-passphrase-path -> --fleet-server-cert-key-passphrase (#1658) * github-action: Add AsciiDoc freeze warning (#1648) * github-action: Add AsciiDoc freeze warning * github-action: Add AsciiDoc freeze warning * Add 8.18 branch to backport and mergify configs (#1664) * Add Fleet & Agent 8.16.4 Release Notes (#1669) * Add Fleet & Agent 8.16.4 Release Notes * Add Fleet & Agent 8.16.4 Release Notes * Add four new commits * Revert index file * Add Fleet & Agent 8.17.2 Release Notes (#1670) * Add Fleet & Agent 8.17.2 Release Notes * Add Go version bump #6686 * Update docs/en/ingest-management/release-notes/release-notes-8.17.asciidoc Co-authored-by: Craig MacKenzie <[email protected]> --------- Co-authored-by: Craig MacKenzie <[email protected]> * Add known issue for Kibana OOM crashes (#1672) * Update commands.asciidoc (#1668) Remove the `--non-interactive` flag from the `elastic-agent enroll` command because its not available * [DOCS] Warn LS pipeline should not modify fields coming from EA (#1667) * [DOCS] Warn LS pipeline should not modify fields coming from EA Warn LS pipeline should not modify fields coming from EA Modifying data coming from EA can prevent the ingest pipelines on Elasticsearch side associated to the integrations in use in EA to work correctly. * Update docs/en/ingest-management/elastic-agent/configuration/outputs/output-logstash.asciidoc --------- Co-authored-by: David Kilfoyle <[email protected]> * Update Fleet docs for new 'read' access roles (#1697) * Update Fleet docs for new 'read' access roles * fixup * Fix link in 8.17.2 release notes (#1704) * Update fleet-agent-proxy-package-registry.asciidoc (#1722) * Update fleet-agent-proxy-package-registry.asciidoc * Update docs/en/ingest-management/fleet-agent-proxy-package-registry.asciidoc --------- Co-authored-by: David Kilfoyle <[email protected]> * Add Fleet & Agent 8.18.0 Release Notes (#1665) * Add Fleet & Agent 8.18.0 Release Notes * Add second batch * fix PR link * Add BC4 agent item * Update docs/en/ingest-management/release-notes/release-notes-8.18.asciidoc * Update docs/en/ingest-management/release-notes/release-notes-8.17.asciidoc * add latest entries * Update docs/en/ingest-management/release-notes/release-notes-8.18.asciidoc Co-authored-by: Eric Beahan <[email protected]> * Update docs/en/ingest-management/release-notes/release-notes-8.18.asciidoc Co-authored-by: Eric Beahan <[email protected]> * Update docs/en/ingest-management/release-notes/release-notes-8.18.asciidoc Co-authored-by: Craig MacKenzie <[email protected]> * Update docs/en/ingest-management/release-notes/release-notes-8.18.asciidoc Co-authored-by: Craig MacKenzie <[email protected]> * Update docs/en/ingest-management/release-notes/release-notes-8.18.asciidoc Co-authored-by: Kyle Pollich <[email protected]> * Update docs/en/ingest-management/release-notes/release-notes-8.18.asciidoc Co-authored-by: Kyle Pollich <[email protected]> --------- Co-authored-by: Eric Beahan <[email protected]> Co-authored-by: Craig MacKenzie <[email protected]> Co-authored-by: Kyle Pollich <[email protected]> * Update Elastic Agent binary sizes (#1777) * Update warning for Elastic Defend with Remote ES cluster (#1759) * Update warning for Elastic Defend with Remote ES cluster * Remove details * [Backport] Add note about remote ES error with Fleet Server (#1786) * github-action: add supported GitHub commands (#1796) * Add Fleet and Agent release notes 8.18.2 --------- Signed-off-by: Alexandros Sapranidis <[email protected]> Co-authored-by: Karen Metts <[email protected]> Co-authored-by: Craig MacKenzie <[email protected]> Co-authored-by: David Kilfoyle <[email protected]> Co-authored-by: nima <[email protected]> Co-authored-by: Jill Guyonnet <[email protected]> Co-authored-by: Julien Mailleret <[email protected]> Co-authored-by: Luca Belluccini <[email protected]> Co-authored-by: Mikołaj Świątek <[email protected]> Co-authored-by: tammytorbert <[email protected]> Co-authored-by: Michael Katsoulis <[email protected]> Co-authored-by: Julia Bardi <[email protected]> Co-authored-by: Frederic Dartayre <[email protected]> Co-authored-by: Brandon Morelli <[email protected]> Co-authored-by: Lee E Hinman <[email protected]> Co-authored-by: David Kilfoyle <[email protected]> Co-authored-by: Edu González de la Herrán <[email protected]> Co-authored-by: Brandon Morelli <[email protected]> Co-authored-by: Andrew Gizas <[email protected]> Co-authored-by: Maurizio Branca <[email protected]> Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com> Co-authored-by: Thomas Youngs <[email protected]> Co-authored-by: William Easton <[email protected]> Co-authored-by: Alexandros Sapranidis <[email protected]> Co-authored-by: Geoff Rowland <[email protected]> Co-authored-by: Kyle Pollich <[email protected]> Co-authored-by: Pierre HILBERT <[email protected]> Co-authored-by: Amit Kanfer <[email protected]> Co-authored-by: Austin Smith <[email protected]> Co-authored-by: Khushi Jain <[email protected]> Co-authored-by: Frederik Berg <[email protected]> Co-authored-by: Tiago Queiroz <[email protected]> Co-authored-by: Ian Lee <[email protected]> Co-authored-by: shainaraskas <[email protected]> Co-authored-by: Michel Laterman <[email protected]> Co-authored-by: Paolo Chilà <[email protected]> Co-authored-by: BBQigniter <[email protected]> Co-authored-by: Rohit <[email protected]> Co-authored-by: Insuk (Chris) Cho <[email protected]> Co-authored-by: Blake Rouse <[email protected]> Co-authored-by: Lara Moreno <[email protected]> Co-authored-by: Jan Calanog <[email protected]> Co-authored-by: Mirko Bez <[email protected]> Co-authored-by: Eric Beahan <[email protected]> Co-authored-by: Victor Martinez <[email protected]> (cherry picked from commit ec1efa3)

Add steps to configure a PGP key for agent upgrade

08188fc

kilfoyle requested a review from a team as a code owner March 26, 2024 20:35

kilfoyle added the backport-8.13 label Mar 26, 2024

kilfoyle requested review from lucabelluccini, michalpristas and michel-laterman March 26, 2024 21:12

lucabelluccini previously approved these changes Jul 29, 2024

View reviewed changes

Rebuild

80e6075

Add alternative of using fleet-server endpoint

ab5616f

fixup

ceadbd6

michel-laterman reviewed Jul 29, 2024

View reviewed changes

Update logic based on Michel's input

bcb1d38

kilfoyle dismissed lucabelluccini’s stale review via bcb1d38 August 2, 2024 19:43

lucabelluccini reviewed Aug 23, 2024

View reviewed changes

docs/en/ingest-management/fleet/air-gapped.asciidoc Outdated Show resolved Hide resolved

lucabelluccini reviewed Aug 23, 2024

View reviewed changes

docs/en/ingest-management/fleet/air-gapped.asciidoc Show resolved Hide resolved

lucabelluccini reviewed Aug 23, 2024

View reviewed changes

docs/en/ingest-management/fleet/air-gapped.asciidoc Outdated Show resolved Hide resolved

lucabelluccini reviewed Aug 23, 2024

View reviewed changes

kilfoyle removed the request for review from michalpristas August 23, 2024 17:54

Add Luca's suggestions

f698c5e

elastic deleted a comment from shainaraskas Jan 21, 2025

kilfoyle requested a review from lucabelluccini January 28, 2025 17:09

lucabelluccini reviewed Jan 28, 2025

View reviewed changes

docs/en/ingest-management/fleet/air-gapped.asciidoc Show resolved Hide resolved

Update docs/en/ingest-management/fleet/air-gapped.asciidoc

3d7e3d8

Co-authored-by: Luca Belluccini <[email protected]>

kilfoyle commented Jan 28, 2025

View reviewed changes

docs/en/ingest-management/fleet/air-gapped.asciidoc Outdated Show resolved Hide resolved

Update docs/en/ingest-management/fleet/air-gapped.asciidoc

f221a6e

kilfoyle commented Jan 28, 2025

View reviewed changes

docs/en/ingest-management/fleet/air-gapped.asciidoc Outdated Show resolved Hide resolved

Update docs/en/ingest-management/fleet/air-gapped.asciidoc

09bbffe

kilfoyle commented Jan 28, 2025

View reviewed changes

docs/en/ingest-management/fleet/air-gapped.asciidoc Outdated Show resolved Hide resolved

Update docs/en/ingest-management/fleet/air-gapped.asciidoc

c2cb2d0

karenzone requested changes Jan 29, 2025

View reviewed changes

karenzone approved these changes Jan 29, 2025

View reviewed changes

kilfoyle added backport-8.17 and removed backport-8.16 labels Jan 29, 2025

kilfoyle closed this Jan 29, 2025

kilfoyle reopened this Jan 29, 2025

kilfoyle merged commit 4429a6e into elastic:main Jan 29, 2025
3 checks passed

This was referenced Jan 29, 2025

[8.x] Add steps to configure a PGP key for agent upgrade (backport #984) #1655

Merged

[8.17] Add steps to configure a PGP key for agent upgrade (backport #984) #1656

Merged


		In an air-gapped environment, the agent won't be able to download the remote key and therefore cannot be upgraded. For versions 8.9.0 to 8.10.3, you can resolve this problem following the steps described in the associated link:https://www.elastic.co/guide/en/fleet/8.9/release-notes-8.9.0.html#known-issues-8.9.0[known issue] documentation.

		Starting in version 8.10.4, you can resolve this problem by configuring {agents} to download the PGP/GPG key from a custom URL specified in {fleet-server}:

	Accessing the endpoint requires a valid API key and the endpoint is rate limited.
	Accessing the endpoint requires a valid API key and the endpoint is rate limited.

	If there isn't a `default.pgp` key in the `FLEETSERVER_BINARY_DIR/elastic-agent-upgrade-keys/default.pgp` directory, {fleet-server} instead will attempt to retrieve a PGP/GPG key from the URL that you can specify with the `server.pgp.upstream_url` setting.
	If there isn't a `default.pgp` key in the `FLEETSERVER_BINARY_DIR/elastic-agent-upgrade-keys/default.pgp` directory, {fleet-server} instead will attempt to retrieve a PGP/GPG key from the URL that you can specify with the `server.pgp.upstream_url` setting.

Add steps to configure a PGP key for agent upgrade #984

Add steps to configure a PGP key for agent upgrade #984

Uh oh!

Conversation

kilfoyle commented Mar 26, 2024 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

github-actions bot commented Mar 26, 2024

Uh oh!

kilfoyle commented Apr 3, 2024

Uh oh!

kilfoyle commented Apr 12, 2024

Uh oh!

kilfoyle commented Apr 23, 2024

Uh oh!

kilfoyle commented May 29, 2024

Uh oh!

lucabelluccini commented Jul 29, 2024

Uh oh!

kilfoyle commented Jul 29, 2024

Uh oh!

michel-laterman commented Jul 29, 2024

Uh oh!

kilfoyle commented Jul 29, 2024

Uh oh!

Choose a reason for hiding this comment

Uh oh!

kilfoyle Jul 30, 2024 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Uh oh!

Uh oh!

lucabelluccini Aug 23, 2024 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

lucabelluccini commented Aug 23, 2024

Uh oh!

kilfoyle commented Jan 28, 2025

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

karenzone left a comment

kilfoyle commented Mar 26, 2024 •

edited

Loading

kilfoyle Jul 30, 2024 •

edited

Loading

lucabelluccini Aug 23, 2024 •

edited

Loading