APM input settings
editAPM input settings
editConfigure and customize APM integration settings directly in Kibana:
- Open Kibana and navigate to Fleet.
- Under the Agent policies tab, select the policy you would like to configure.
- Find the Elastic APM integration and select Actions > Edit integration.
General settings
edit
(text) Defines the host and port the server is listening on.
Use Default: |
|
The publicly reachable server URL. For deployments on Elastic Cloud or ECK, the default is unchangeable. |
|
(int) Maximum permitted size of a request’s header accepted by the server to be processed (in Bytes). Default: |
|
(text) Maximum amount of time to wait for the next incoming request before underlying connection is closed. Default: |
|
(text) Maximum permitted duration for reading an entire request. Default: |
|
Maximum duration before releasing resources when shutting down |
(text) Maximum duration in seconds before releasing resources when shutting down the server. Default: |
(int) Maximum permitted size of an event accepted by the server to be processed (in Bytes). Default: |
|
(int) Maximum number of TCP connections to accept simultaneously. Default: |
|
(text) Custom HTTP headers to add to HTTP responses. Useful for security policy compliance. |
|
(bool) Capture personal data such as IP or User Agent. If true, APM Server captures the IP of the instrumented service and its User Agent if any. Default: |
|
(text) The default service environment for events without a defined service environment. Default: none |
|
(bool) When set to Default: |
Real User Monitoring (RUM) settings
edit
(bool) Enables and disables Real User Monitoring (RUM). Default: |
|
(text) A list of permitted origins for RUM support. User-agents send an Origin header that will be validated against this list. This is done automatically by modern browsers as part of the CORS specification. An origin is made of a protocol scheme, host and port, without the URL path. Default: |
|
(text) By default, HTTP requests made from the RUM agent to the APM integration are limited in the HTTP headers they are allowed to have. If any other headers are added, the request will be rejected by the browser due to Cross-Origin Resource Sharing (CORS) restrictions. If you need to add extra headers to these requests, use this configuration to allow additional headers. The default list of values includes |
|
(text) Custom HTTP headers to add to RUM responses. For example, for security policy compliance. Headers set here are in addition to those set in the "Custom HTTP response headers", but only apply to RUM responses. Default: none |
|
(text) RegExp to be matched against a stacktrace frame’s Default: |
|
(text) RegExp to be matched against a stacktrace frame’s Default: |
TLS settings
edit
(bool) Enable TLS. Default: |
|
(text) The path to the file containing the certificate for server authentication. Required when TLS is enabled. Default: none |
|
(text) The path to the file containing the Server certificate key. Required when TLS is enabled. Default: none |
|
(array) A list of allowed TLS protocol versions. Default: |
|
(text) The list of cipher suites to use. The first entry has the highest priority. If this option is omitted, the Go crypto library’s default suites are used (recommended). Note that TLS 1.3 cipher suites are not individually configurable in Go, so they are not included in this list. |
|
(text) The list of curve types for ECDHE (Elliptic Curve Diffie-Hellman ephemeral key exchange). Default: none |
Agent authorization settings
edit
(bool) Enable or disable API key authorization between APM Server and APM agents. Default: |
|
(int) Each unique API key triggers one request to Elasticsearch. This setting restricts the number of unique API keys are allowed per minute. The minimum value for this setting should be the number of API keys configured in your monitored services. Default: |
|
(text) Authorization token for sending APM data. The same token must also be set in each APM agent. This token is not used for RUM endpoints. Default: No secret token set |
|
(bool) Enable or disable anonymous authentication. RUM agents do not support authentication, so disabling anonymous access will effectively disable RUM agents. Default: |
|
(array) A list of permitted APM agent names for anonymous authentication.
Names in this list must match the agent’s Default: |
|
(array) A list of permitted service names for anonymous authentication.
Names in this list must match the agent’s Default: Not set (any service name is accepted) |
|
(int) The number of unique IP addresses to track in an LRU cache.
IP addresses in the cache will be rate limited according to the Default: |
|
(int) The maximum amount of events allowed to be sent to the APM Server anonymous auth endpoint per IP per second. Default: |