Review the following information about the Kibana 8.3.0 release.
Alerting users who are running 8.2 should not upgrade to either 8.3.0 or 8.3.1. Both 8.3.0 and 8.3.1 have a bug where alerting rules that were created or edited in 8.2 will stop running on upgrade. If you have upgraded to 8.3.0 or 8.3.1 and your alerting rules have stopped running with an error similar to the following example, you will need to go to Stack Management > Rules and Connectors, multi-select the failed rules, click on Manage rules > Disable and then click on Manage rules > Enable. Disabling and re-enabling the rule will generate a new API key using the credentials of the user performing these actions and reset the rule state. For more details about API key authorization, refer to Authorization.
- Example error message
<rule-type>:<UUID>: execution failed - security_exception: [security_exception] Reason: missing authentication credentials for REST request [/_security/user/_has_privileges], caused by: ""
Breaking changes can prevent your application from optimal operation and performance. Before you upgrade, review the breaking change, then mitigate the impact to your application.
Removes Quandl and Graphite integrations
.graphite functions and advanced settings are removed from Timelion. For more information, check #129581.
When you use the
vis_type_timelion.graphiteUrls kibana.yml setting, Kibana successfully starts, but logs a
[WARN ][config.deprecation] You no longer need to configure "vis_type_timelion.graphiteUrls". warning.
To leave your feedback about the removal of
.graphite, go to the discuss forum.
Makes Osquery All with All base privilege
The Osquery Kibana privilege has been updated, so that when the Privileges for all features level is set to All, this now applies All to Osquery privileges as well. Previously, users had to choose the Customize option to grant any access to Osquery. For more information, refer to #130523.
This impacts user roles that have Privileges for all features set to All. After this update, users with this role will have access to the Osquery page in Kibana. However, to use the Osquery feature fully, these requirements remain the same: users also need Read access to the logs-osquery_manager.result* index and the Osquery Manager integration must be deployed to Elastic Agents.
To review the breaking changes in previous versions, refer to the following:
The following functionality is deprecated in 8.3.0, and will be removed in 9.0.0. Deprecated functionality does not have an immediate impact on your application, but we strongly recommend you make the necessary updates after you upgrade to 8.3.0.
Deprecates input controls
Deprecates anonymous authentication credentials
The apiKey, including key and ID/key pair, and
elasticsearch_anonymous_user credential types for anonymous authentication providers are deprecated. For more information, check #131636.
If you have anonymous authentication provider configured with apiKey or
elasticsearch_anonymous_user credential types, a deprecation warning appears, even when the provider is not enabled.
Deprecates v1 and v2 security_linux and security_windows jobs
The v1 and v2 job configurations for security_linux and security_windows are deprecated. For more information, check #131166.
The following security_linux and security_windows job configurations are updated to v3:
Updates the default legend size
In the Lens visualization editor, the Auto default for Legend width has been deprecated. For more information, check #130336.
When you create Lens visualization, the default for the Legend width is now Medium.
In kibana.yml, the
xpack.data_enhanced.* setting is deprecated. For more information, check #122075.
data.* configuration parameters instead.
Kibana 8.3.0 adds the following new and notable features.
- Enables the new controls by default #131341
- Elastic Security
- For the Elastic Security 8.3.0 release information, refer to Elastic Security Solution Release Notes.
- Changes to agent upgrade modal to allow for rolling upgrades #132421
- Lens & Visualizations
- Machine Learning
- Adds the Stack monitoring health API #132705
- Querying & Filtering
- Improves the current filter/search experience #128401
- Adds method to re-link visualizations with missing index-pattern #132336
For more information about the features introduced in 8.3.0, refer to What’s new in 8.3.