Elastic Stack subscriptions

The Elastic Stack — Elasticsearch, Kibana, and Integrations — powers a variety of use cases. And we have flexible plans to help you get the most out of your on-prem subscriptions.

Our resource-based pricing philosophy is simple: You only pay for the data you use, at any scale, for every use case.

 
Free and open - Basic 1, 2
Plati­num
Enter­prise
Gold
(Discon­tinued)9

Elastic Stack Operations & Management

Storage types

Inverted index (for search)
Evaluating calculated fields at index time
Runtime fields
Lookup runtime field
Document store (for unstructured)
Columnar store (for analytics)
BKD trees (for numeric, dates, & geo)
Flattened field type
Histogram field type
Match only text field type
Shape field type
Vector field type
Version field type
Wildcard field type

Data management

Searchable snapshots
Snapshot/restore APIs
Snapshot as simple archives
Snapshot lifecycle management
Snapshot-based peer recoveries
Data rollups
Data streams
Data tiers
Data transforms
Index lifecycle management

Stack management

Data import tutorials
Ingest Node Pipeline Builder UI
Grok Debugger
Upgrade Assistant
License management
Centralized Logstash pipeline management

Scalability & resiliency

Clustering & high availability
Automatic data rebalancing
Cross-cluster search
Cross-cluster replication

Elastic Stack security

Secure settings
Encrypted communications
Role-based access control
Anonymous access control (public sharing)
File and native authentication
Kibana Spaces
Kibana feature controls
Kibana sub-feature privileges8
Prelogin access agreement
API keys management
Elasticsearch audit logging
Kibana audit logging
IP filtering
LDAP, PKI3, Active Directory authentication
Elasticsearch Token Service
Single sign-on (SAML, OpenID Connect, Kerberos)
Attribute-based access control
Field- and document-level security
Custom authentication & authorization realms
Encryption at rest support
FIPS 140-2 mode

Stack monitoring

Full stack monitoring
Multi-stack monitoring
Configurable retention policy
Kibana alerting and actions5

Alerting

Kibana Alerts
Kibana Alerts: suppression and noise reduction - throttling, muting, and snoozing
Kibana Alerts: tracking containment (geofencing)
Kibana Alerts: anomaly detection alert (machine learning)
Kibana Alerts: operational alerts for transforms
Kibana Alerts: search threshold alerts for Discover
Kibana Actions: Index and Logging
Kibana Actions: email, webhooks, Jira, Microsoft Teams, PagerDuty, Slack, Swimlane, xMatters
Kibana Actions: IBM Resilient, ServiceNow® (ITOM, ITSM, SecOps)
Watcher

Clients

REST APIs
Language clients
Query DSL
Console
ES-Hadoop
JDBC Client
ODBC Client
Tableau Connector

Localized UI

English
Chinese (Simplified)
French
Japanese

Search & Analysis

Full-text search

Relevance scoring
Highlighting
Type ahead
Corrections
Suggestions
Percolations
Async search
Results pinning
Dynamically updateable synonyms
Query profiler
Similarity functions for vector fields
Vector search
Doc-value-only fields

Analytics

Aggregations
Boxplot aggregation
Cumulative cardinality aggregation
Geoline aggregation
Geoshape aggregations
Geohexgrid aggregations
Geogrid query
Moving percentiles aggregation
Multi terms aggregation
Normalize aggregation
Range aggregation over histogram fields
Random sampler aggregation
Rate aggregation
Significant terms aggregation p-value score
String stats aggregation
Text categorization aggregation
Top metrics aggregation
T-test aggregation
Graph exploration
Vector tiles API

Query languages

Elasticsearch SQL APIs & CLI
Event Query Language (EQL)

Machine Learning

Feature engineering

Data Visualizer
File upload wizard

Anomaly detection

Single metric and multi-metric
Population/entity analysis
Log message categorization
Rare analysis
Root cause indication
Forecasting on time series

Data frame analysis

Outlier detection
Regression
Classification
Feature importance

Model management

Inference
Language identification
Third party models support
Kibana space model separation

Data Ingest & Transformation

Ingest products & features

Filebeat, Metricbeat, Winlogbeat, Packetbeat, Heartbeat, Auditbeat
Functionbeat
Real browser-based synthetic monitoring agent
Logstash
ES-Hadoop
File import wizard

Fleet

Fleet Server
Fleet app
Fleet integrations
Elastic Agent
Selective agent binary updates
Selective agent policy reassignment
Selective agent unenrollment

Data sources

Cloud services
Containers and orchestration
Datastores and queues
Operating systems
Web servers and proxies
1Password
Abuse.ch
ActiveMQ
Akamai
AlienVault Open Threat Exchange (OTX)
Anomali Limo & ThreatStream
ArcSight (as CEF)
Atlassian Jira
Audit system data
Auth0
AWS (S3, EC2, ELB, WAF, Billing, CloudTrail, Network Firewall, etc.)
Azure
Bitbucket
Check Point Firewall
Cisco Duo, IOS/ASA, Firepower, Meraki, ISE, Secure Endpoint & Umbrella
Cloudflare
CockroachDB
Common Event Format (CEF)
Confluence
CoreDNS
CrowdStrike Falcon
CyberArk Privileged Access Security
Cybersixgill
Docker Logging Plugin
Envoy Proxy
Fortinet Fortigate
GitHub audit data
Google Cloud (Pub/Sub, VPC, etc.)
Google Workspace
Hashicorp Vault
IBM MQ
Iptables
Istio Service Mesh
Juniper SRX
Microsoft 365 Defender & Defender for Endpoint
Microsoft (Office) 365
Microsoft SQL Server
Microsoft Windows security events and custom event logs
Mimecast
MISP
ModSecurity
MQTT
MySQL Enterprise Audit Logs
NetFlow & IPFIX
Okta
Oracle Database
Osquery Log Collection
Palo Alto Networks Cortex XDR
Palo Alto Networks Firewalls
Pensando
PostgreSQL
PowerShell
Pivotal Cloud Foundry (PCF)
Prometheus
QNAP NAS
Recorded Future
Redis Enterprise
Session initiation protocol (SIP)
SIEM connector (legacy)
Snyk
Sophos XG
Suricata
Symantec Endpoint Protection
Sysmon
Tenable.sc
ThreatQuotient
Traefik
VMware Carbon Black Cloud & EDR
VMware vSphere
Zeek (formerly Bro)
ZeroFox
Zoom
Zscaler

Data transformation

Index time enrichment
Processors
Analyzers
Tokenizers
Filters
Filter on ANN - vector Search
Grok
Field transformation
External lookup enrichment
Circle ingest processor
Match & Geo-match enrich processor

Elastic Common Schema

Elastic Common Schema

Data Exploration & Visualization

Visualizations

Time series
Geo
Metrics
Tables
Tag cloud
Custom (Vega)
Lens

Data exploration

Dashboards
Drilldown between dashboards
Drilldown to URL
Discover
Field statistics (beta)
Console
Kibana query autocomplete
Kibana runtime fields editor
Run search sessions in background
Graph analytics

Canvas

Canvas
Canvas shareables

Share & collaborate

Embeddable dashboards
Anonymous access control (public sharing)
CSV exports
PDF and PNG reports
Saved queries

Content management

Kibana Spaces
Custom banners
Object export UI & APIs
Tags
Navigational search

Elastic Observability

Observability overview
User Experience overview
Curated ad hoc data exploration

Elastic APM

APM Server
Jaeger intake
OpenTelemetry intake for traces and metrics
APM app
Distributed tracing
Service maps
Correlations

APM agents

Java
.NET
Go
Ruby
RUM (JavaScript)
PHP
Python
Node

Integrations

Elastic Logs, Metrics
Kibana alerting and actions5
Machine learning

Elastic Logs

Log shipper (Filebeat)
Dashboards for common data sources
Logs app

Integrations

Elastic Uptime, APM
Kibana alerting and actions5
Log categorization
Machine learning

Elastic Metrics

Metric shipper (Metricbeat)
Dashboards for common data sources
Metrics app

Integrations

Elastic Logs, APM, Uptime
Kibana alerting and actions5
Machine learning

Elastic Uptime

Uptime monitor (Heartbeat)
Uptime dashboards in Kibana
Uptime app

Integrations

Elastic Logs, Metrics, APM
Kibana alerting and actions5
Machine learning

Elastic Security

Elastic Common Schema
Extended detection and response (XDR)
Security information and event management (SIEM)
Host security analysis
Network security analysis
User security analysis
Timeline event explorer
Case management
Detection engine (e.g., correlation, indicator match, threshold)
Prebuilt detection rules
Detection alert external actions
Machine learning anomaly detection
Prebuilt anomaly detection jobs
Malware prevention
Admin-defined endpoint blocklist
Ransomware prevention
Malicious behavior protection
Memory threat protection
Host isolation remote response
Customizable on-endpoint protection notifications

Integrations

Elastic Agent
Native host-based response
Elastic APM
Elastic Maps
Kibana Alerts and Actions5
Osquery Manager
Network Packet Analyzer
Threat intelligence feeds and platforms
Atlassian Jira
Swimlane SOAR
IBM Resilient
ServiceNow ITOM, ITSM, SecOps
Machine learning

Elastic Maps

Elastic Maps Service6

Base layer maps
Elastic Maps Server

Maps app

Shapefile and GeoJSON upload
Multiple layers
Native vector tile support
Layer-based filtering
Client-side styling
Individual points and shapes
Geo aggregations
Embed Maps in dashboard
Embed Maps in Canvas
Tracking alerts
Containment alerts
Geo-threshold alerts
Display up to 24 zoom levels
Custom raster and vector tile service support
Kibana Alerts: tracking containment (geofencing)

Elastic App Search

App Search Server
App Search UI
Search result curation
Search analytics
Synonyms management
Language-specific relevance
Typo-tolerant relevance model
Relevance model tuning
Adaptive Relevance: Curations (beta)
Index lifecycle management
Meta engines
Web crawler
Web crawler HTTP proxy authentication
Web Crawler HTTP authentication
Precision tuning (beta)
Passthrough Elasticsearch queries
Elasticsearch-based App Search engines

Clients

Python
Ruby

Security

Encrypted communications
Role-based access control
LDAP, PKI3, Active Directory authentication
Single sign-on (SAML, OpenID Connect, Kerberos, JWT)
Encryption at rest support
Audit logging

Elastic Workplace Search

Unified organizational search experience

Workplace Search server
Unified search interface
Out-of-the-box search applications
Customizable look and feel
Natural language query filtering
Search history
Typo-tolerant relevance model
Synonyms management
Customizable filtering and faceting
Content source prioritization
Search analytics
Search API

Clients

Python
Ruby

Content sources

First-party cloud source synchronization
First-party on-premise source synchronization
Custom source support via API
Full-text content indexing for files, documents, and records
Document-level permission support
Global sync scheduling configuration
Source-level scheduling configuration
Object synchronization selection
Path-based content synchronization
File extension-based content synchronization
Private sources
Content source indexing rules and scheduling

User management & security

Organizational groups
LDAP, PKI3, Active Directory authentication
Single sign-on (SAML, OpenID Connect, Kerberos, JWT)
Role-based access control
Encrypted communications
Encryption at rest support
Audit logging

Orchestration

Elastic Cloud Enterprise

Deploy anywhere: bare metal, VMs, private or public cloud
Centrally provision, manage, and monitor multiple clusters
Resource tagging, and tag-based deployment configuration
Online same-day version updates
Single-click upgrades & scaling
User and role management
Automated periodic snapshots
Optimized resource utilization
Container-based resource isolation
Cross-cluster search and replication across ECE installations
Deployment autoscaling

Elastic Cloud on Kubernetes4

Deploy Elasticsearch, Kibana, and APM Server, Beats, Enterprise tier, and Elastic Agent on Kubernetes
Deploy Enterprise Search and Elastic Maps Server on Kubernetes
Provision, manage, and monitor multiple clusters
Default Elastic Stack security and authentication for every deployment
Single command upgrades and scaling
Cross-cluster replication and search within or outside of a Kubernetes cluster
Autoscaling Elasticsearch and Machine learning nodes

Support

Support coverage
24/7/365
24/7/365
Business hrs
Response times
Critical: 1 hr
L2: 4 hrs
L3: 1 day
Critical: 1 hr
L2: 4 hrs
L3: 1 day
Critical: 4 hrs
L2: 1 day
L3: 2 days
Unlimited # of incidents
Unlimited # of projects
Support contacts7
8
8
6
Web and phone support
Emergency patches

Elastic Stack Operations & Management

Storage types

Inverted index (for search)
Evaluating calculated fields at index time
Runtime fields
Lookup runtime field
Document store (for unstructured)
Columnar store (for analytics)
BKD trees (for numeric, dates, & geo)
Flattened field type
Histogram field type
Match only text field type
Shape field type
Vector field type
Version field type
Wildcard field type

Data management

Searchable snapshots
Snapshot/restore APIs
Snapshot as simple archives
Snapshot lifecycle management
Snapshot-based peer recoveries
Data rollups
Data streams
Data tiers
Data transforms
Index lifecycle management

Stack management

Data import tutorials
Ingest Node Pipeline Builder UI
Grok Debugger
Upgrade Assistant
License management
Centralized Logstash pipeline management

Scalability & resiliency

Clustering & high availability
Automatic data rebalancing
Cross-cluster search
Cross-cluster replication

Elastic Stack security

Secure settings
Encrypted communications
Role-based access control
Anonymous access control (public sharing)
File and native authentication
Kibana Spaces
Kibana feature controls
Kibana sub-feature privileges8
Prelogin access agreement
API keys management
Elasticsearch audit logging
Kibana audit logging
IP filtering
LDAP, PKI3, Active Directory authentication
Elasticsearch Token Service
Single sign-on (SAML, OpenID Connect, Kerberos)
Attribute-based access control
Field- and document-level security
Custom authentication & authorization realms
Encryption at rest support
FIPS 140-2 mode

Stack monitoring

Full stack monitoring
Multi-stack monitoring
Configurable retention policy
Kibana alerting and actions5

Alerting

Kibana Alerts
Kibana Alerts: suppression and noise reduction - throttling, muting, and snoozing
Kibana Alerts: tracking containment (geofencing)
Kibana Alerts: anomaly detection alert (machine learning)
Kibana Alerts: operational alerts for transforms
Kibana Alerts: search threshold alerts for Discover
Kibana Actions: Index and Logging
Kibana Actions: email, webhooks, Jira, Microsoft Teams, PagerDuty, Slack, Swimlane, xMatters
Kibana Actions: IBM Resilient, ServiceNow® (ITOM, ITSM, SecOps)
Watcher

Clients

REST APIs
Language clients
Query DSL
Console
ES-Hadoop
JDBC Client
ODBC Client
Tableau Connector

Localized UI

English
Chinese (Simplified)
French
Japanese

Search & Analysis

Full-text search

Relevance scoring
Highlighting
Type ahead
Corrections
Suggestions
Percolations
Async search
Results pinning
Dynamically updateable synonyms
Query profiler
Similarity functions for vector fields
Vector search
Doc-value-only fields

Analytics

Aggregations
Boxplot aggregation
Cumulative cardinality aggregation
Geoline aggregation
Geoshape aggregations
Geohexgrid aggregations
Geogrid query
Moving percentiles aggregation
Multi terms aggregation
Normalize aggregation
Range aggregation over histogram fields
Random sampler aggregation
Rate aggregation
Significant terms aggregation p-value score
String stats aggregation
Text categorization aggregation
Top metrics aggregation
T-test aggregation
Graph exploration
Vector tiles API

Query languages

Elasticsearch SQL APIs & CLI
Event Query Language (EQL)

Machine Learning

Feature engineering

Data Visualizer
File upload wizard

Anomaly detection

Single metric and multi-metric
Population/entity analysis
Log message categorization
Rare analysis
Root cause indication
Forecasting on time series

Data frame analysis

Outlier detection
Regression
Classification
Feature importance

Model management

Inference
Language identification
Third party models support
Kibana space model separation

Data Ingest & Transformation

Ingest products & features

Filebeat, Metricbeat, Winlogbeat, Packetbeat, Heartbeat, Auditbeat
Functionbeat
Real browser-based synthetic monitoring agent
Logstash
ES-Hadoop
File import wizard

Fleet

Fleet Server
Fleet app
Fleet integrations
Elastic Agent
Selective agent binary updates
Selective agent policy reassignment
Selective agent unenrollment

Data sources

Cloud services
Containers and orchestration
Datastores and queues
Operating systems
Web servers and proxies
1Password
Abuse.ch
ActiveMQ
Akamai
AlienVault Open Threat Exchange (OTX)
Anomali Limo & ThreatStream
ArcSight (as CEF)
Atlassian Jira
Audit system data
Auth0
AWS (S3, EC2, ELB, WAF, Billing, CloudTrail, Network Firewall, etc.)
Azure
Bitbucket
Check Point Firewall
Cisco Duo, IOS/ASA, Firepower, Meraki, ISE, Secure Endpoint & Umbrella
Cloudflare
CockroachDB
Common Event Format (CEF)
Confluence
CoreDNS
CrowdStrike Falcon
CyberArk Privileged Access Security
Cybersixgill
Docker Logging Plugin
Envoy Proxy
Fortinet Fortigate
GitHub audit data
Google Cloud (Pub/Sub, VPC, etc.)
Google Workspace
Hashicorp Vault
IBM MQ
Iptables
Istio Service Mesh
Juniper SRX
Microsoft 365 Defender & Defender for Endpoint
Microsoft (Office) 365
Microsoft SQL Server
Microsoft Windows security events and custom event logs
Mimecast
MISP
ModSecurity
MQTT
MySQL Enterprise Audit Logs
NetFlow & IPFIX
Okta
Oracle Database
Osquery Log Collection
Palo Alto Networks Cortex XDR
Palo Alto Networks Firewalls
Pensando
PostgreSQL
PowerShell
Pivotal Cloud Foundry (PCF)
Prometheus
QNAP NAS
Recorded Future
Redis Enterprise
Session initiation protocol (SIP)
SIEM connector (legacy)
Snyk
Sophos XG
Suricata
Symantec Endpoint Protection
Sysmon
Tenable.sc
ThreatQuotient
Traefik
VMware Carbon Black Cloud & EDR
VMware vSphere
Zeek (formerly Bro)
ZeroFox
Zoom
Zscaler

Data transformation

Index time enrichment
Processors
Analyzers
Tokenizers
Filters
Filter on ANN - vector Search
Grok
Field transformation
External lookup enrichment
Circle ingest processor
Match & Geo-match enrich processor

Elastic Common Schema

Elastic Common Schema

Data Exploration & Visualization

Visualizations

Time series
Geo
Metrics
Tables
Tag cloud
Custom (Vega)
Lens

Data exploration

Dashboards
Drilldown between dashboards
Drilldown to URL
Discover
Field statistics (beta)
Console
Kibana query autocomplete
Kibana runtime fields editor
Run search sessions in background
Graph analytics

Canvas

Canvas
Canvas shareables

Share & collaborate

Embeddable dashboards
Anonymous access control (public sharing)
CSV exports
PDF and PNG reports
Saved queries

Content management

Kibana Spaces
Custom banners
Object export UI & APIs
Tags
Navigational search

Elastic Observability

Observability overview
User Experience overview
Curated ad hoc data exploration

Elastic APM

APM Server
Jaeger intake
OpenTelemetry intake for traces and metrics
APM app
Distributed tracing
Service maps
Correlations

APM agents

Java
.NET
Go
Ruby
RUM (JavaScript)
PHP
Python
Node

Integrations

Elastic Logs, Metrics
Kibana alerting and actions5
Machine learning

Elastic Logs

Log shipper (Filebeat)
Dashboards for common data sources
Logs app

Integrations

Elastic Uptime, APM
Kibana alerting and actions5
Log categorization
Machine learning

Elastic Metrics

Metric shipper (Metricbeat)
Dashboards for common data sources
Metrics app

Integrations

Elastic Logs, APM, Uptime
Kibana alerting and actions5
Machine learning

Elastic Uptime

Uptime monitor (Heartbeat)
Uptime dashboards in Kibana
Uptime app

Integrations

Elastic Logs, Metrics, APM
Kibana alerting and actions5
Machine learning

Elastic Security

Elastic Common Schema
Extended detection and response (XDR)
Security information and event management (SIEM)
Host security analysis
Network security analysis
User security analysis
Timeline event explorer
Case management
Detection engine (e.g., correlation, indicator match, threshold)
Prebuilt detection rules
Detection alert external actions
Machine learning anomaly detection
Prebuilt anomaly detection jobs
Malware prevention
Admin-defined endpoint blocklist
Ransomware prevention
Malicious behavior protection
Memory threat protection
Host isolation remote response
Customizable on-endpoint protection notifications

Integrations

Elastic Agent
Native host-based response
Elastic APM
Elastic Maps
Kibana Alerts and Actions5
Osquery Manager
Network Packet Analyzer
Threat intelligence feeds and platforms
Atlassian Jira
Swimlane SOAR
IBM Resilient
ServiceNow ITOM, ITSM, SecOps
Machine learning

Elastic Maps

Elastic Maps Service6

Base layer maps
Elastic Maps Server

Maps app

Shapefile and GeoJSON upload
Multiple layers
Native vector tile support
Layer-based filtering
Client-side styling
Individual points and shapes
Geo aggregations
Embed Maps in dashboard
Embed Maps in Canvas
Tracking alerts
Containment alerts
Geo-threshold alerts
Display up to 24 zoom levels
Custom raster and vector tile service support
Kibana Alerts: tracking containment (geofencing)

Elastic App Search

App Search Server
App Search UI
Search result curation
Search analytics
Synonyms management
Language-specific relevance
Typo-tolerant relevance model
Relevance model tuning
Adaptive Relevance: Curations (beta)
Index lifecycle management
Meta engines
Web crawler
Web crawler HTTP proxy authentication
Web Crawler HTTP authentication
Precision tuning (beta)
Passthrough Elasticsearch queries
Elasticsearch-based App Search engines

Clients

Python
Ruby

Security

Encrypted communications
Role-based access control
LDAP, PKI3, Active Directory authentication
Single sign-on (SAML, OpenID Connect, Kerberos, JWT)
Encryption at rest support
Audit logging

Elastic Workplace Search

Unified organizational search experience

Workplace Search server
Unified search interface
Out-of-the-box search applications
Customizable look and feel
Natural language query filtering
Search history
Typo-tolerant relevance model
Synonyms management
Customizable filtering and faceting
Content source prioritization
Search analytics
Search API

Clients

Python
Ruby

Content sources

First-party cloud source synchronization
First-party on-premise source synchronization
Custom source support via API
Full-text content indexing for files, documents, and records
Document-level permission support
Global sync scheduling configuration
Source-level scheduling configuration
Object synchronization selection
Path-based content synchronization
File extension-based content synchronization
Private sources
Content source indexing rules and scheduling

User management & security

Organizational groups
LDAP, PKI3, Active Directory authentication
Single sign-on (SAML, OpenID Connect, Kerberos, JWT)
Role-based access control
Encrypted communications
Encryption at rest support
Audit logging

Orchestration

Elastic Cloud Enterprise

Deploy anywhere: bare metal, VMs, private or public cloud
Centrally provision, manage, and monitor multiple clusters
Resource tagging, and tag-based deployment configuration
Online same-day version updates
Single-click upgrades & scaling
User and role management
Automated periodic snapshots
Optimized resource utilization
Container-based resource isolation
Cross-cluster search and replication across ECE installations
Deployment autoscaling

Elastic Cloud on Kubernetes4

Deploy Elasticsearch, Kibana, and APM Server, Beats, Enterprise tier, and Elastic Agent on Kubernetes
Deploy Enterprise Search and Elastic Maps Server on Kubernetes
Provision, manage, and monitor multiple clusters
Default Elastic Stack security and authentication for every deployment
Single command upgrades and scaling
Cross-cluster replication and search within or outside of a Kubernetes cluster
Autoscaling Elasticsearch and Machine learning nodes

Support

Support coverage
Response times
Unlimited # of incidents
Unlimited # of projects
Support contacts7
Web and phone support
Emergency patches
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
24/7/365
24/7/365
Business hrs
Critical: 1 hr
L2: 4 hrs
L3: 1 day
Critical: 1 hr
L2: 4 hrs
L3: 1 day
Critical: 4 hrs
L2: 1 day
L3: 2 days
8
8
6

1 For a more detailed discussion of our licensing options and 2021 licensing changes, please refer to the licensing FAQ on our website.

2 Available under the Elastic License. Select features are also available under SSPL or Apache License 2.0. For questions about which features may be licensed under SSPL and Apache License 2.0, please contact elastic_license@elastic.co.

3 Feature is currently not available in deployments on Elastic Cloud Enterprise.

4 Customers whose Enterprise subscriptions use ECE/ECE Instances as the billing metric must agree to additional terms before they can access the Enterprise-level features listed in this section. Please contact us.

5 Refer to the Alerting section (Kibana Alerts and Kibana Actions items) for further details.

6 Elastic Maps Service - Terms of Service

7 Elastic Certified Professionals can be added as additional Support contacts on paid subscriptions at no additional charge.

8 Access to administering Kibana subfeature privileges start at the Gold tier and are available on a per-feature basis matching the feature’s subscriptions tier.

9 Gold Subscription tier is no longer available for new customers, try Elastic Cloud Gold instead. Customers with existing Gold Subscriptions will continue to be supported through the end of its current subscription term.

The list above reflects the features available in the latest version of the Elastic Stack. Any features or functions of services or products referenced on this page or other pages, or in any presentations, press releases or public statements, which are not currently available or not currently available as a GA release, may not be delivered on time or at all. The development, release, and timing of any features or functionality described for our products remains at our sole discretion. Customers who purchase our products and services should make the purchase decisions based upon services and product features and functions that are currently available.