Configure APM Server to use X-Pack security

If you want APM Server to connect to a cluster that has security features enabled, there are extra configuration steps:

  1. Grant users access to secured resources.

    You can use role-based access control to grant APM Server users access to secured resources.

  2. Configure authentication credentials.

    To interact with a secured cluster, APM Server must either provide basic authentication credentials or present a client certificate.

  3. Configure APM Server to use encrypted connections.

    If encryption is enabled on the cluster, you need to enable HTTPS in the APM Server configuration.

  4. Set the password for the built-in monitoring user.

    APM Server uses the apm_system user to send monitoring data to Elasticsearch. If you plan to monitor APM Server in Kibana and have not yet set up the password, set it up now.

For more information about X-Pack security, see Security overview.