This documentation refers to configuring the standalone (legacy) APM Server. This method of running APM Server will be deprecated and removed in a future release. Please consider upgrading to Fleet and the APM integration.
You can configure API keys to authorize requests to APM Server. To create an APM Server user with the required privileges for creating and managing API keys:
Create an API key role, called something like
apm_api_key, that has the following
Allow APM Server to create, retrieve, and invalidate API keys
Depending on what the API key role will be used for, also assign the appropriate
To receive Agent configuration, assign
To ingest agent data, assign
To upload source maps, assign
- To receive Agent configuration, assign
- Assign the API key role to users that need to create and manage API keys. Users with this role can only create API keys that have the same or lower access rights.
Example API key roleedit
The following example assigns the required cluster privileges,
and the ingest agent data
apm API key application privileges to a role named