Taste of Tech Topics

Acroquest Technology株式会社のエンジニアが書く技術ブログ

Elastic{ON} 2017 2日目 | What's X-citing in X-Pack #elasticon

Elasticsearch Elastic{ON} 2017 in San Francisco X-Pack

Elastic{ON}2017 レポートのまとめはこちら!!

Hi, Everyone.
This is Aung Satt from Acroquest.

Today, I attended to session called "What's X-citing in X-Pack" and there were six presenters presented X-Pack components, such as, Security, Alerting, Monitoring & Management, Reporting, Graph, etc... respectively.

f:id:acro-engineer:20170309184731j:plain

Although, I waited for Machine Learning which was announced to be one component in X-Pack was not appeared in today X-Pack session.
I will summarize by each component as follow.

1. Management & Monitoring

Management will play a role which is not just for Kibana anymore, and which can be used for

  1. User Management (v5.0+)
  2. Role Management (v5.0+)
  3. Search Profiler (v5.1+); which is free with basic license.

Moreover, Monitoring became being able to see overview of Logstash besides of Elasticsearch and Kibana in v5.2.
As revolutions for Monitoring.

  1. Cluster Alerts; Proactive, automatic notifications of problems from Watcher
  2. Logstash Pipeline Viewer; you can find bottlenecks in your Logstash nodes and plugins.
  3. Machine Learning Integration
  4. Beats integration

Noticeably changes are Alerts in Monitoring will be always actionable.
f:id:acro-engineer:20170309184807j:plain:w500

2. Security
To make more secure your clusters, Security will remove default password, "changeme" and no more passwords in configuration file and instead of that will single sign on with key authentication.
f:id:acro-engineer:20170309184820j:plain:w500

3. Reporting
f:id:acro-engineer:20170309185606j:plain:w500

Reporting will provides you, more layout options and besides supporting to you downloadable PDF, Reporting will allow you to export you visualization into CSV data.

4. Alerting
Alerting is not changed so much. It will be added Index action which can specify document id for alerting starts from X-Pack v5.3. And Alerting will be powered by Distributed Watch execution which can guarantee for watch execution happens on all nodes and will not do anyworkload on Master node.
f:id:acro-engineer:20170309184839j:plain:w500

Graph

Graph is pretty impressive for its improvement. As you may already know, Graph supports you to understand the relation between documents and Graph has been a stage to make alerts and visualizations on Kibana by just selecting a data node which will be showing in Graph according to your relation of Data.

f:id:acro-engineer:20170308113734j:plain:w500

This can make you to understand more about your data and easier to create reports.
And Graph seems to add new ways to describe your relation of data with Metric table and Swim Lane Table.

f:id:acro-engineer:20170308115613j:plain:w500

In today session, it was good to know the improvements and future possible approaches from x-pack for the value of customers and efficiency.
Be stay in tune, and I will be posting, newest information about ELK from ElasticOn 2017 events.

Thank you.

Elastic{ON}2017 レポートのまとめはこちら!!