Overview

Search Guard Signals Alerting for Elasticsearch and Kibana detects data anomalies in your Elasticsearch cluster and sends notifications on various channels. It is fully integrated with Search Guard Security and is available for free. Signals Alerting can detect anomalies in data stored in Elasticsearch and other IT systems, correlate existing Elasticsearch data with data from any REST endpoint, run calculations and statistics, and trigger notifications if an anomaly is detected.

Features

• Elasticsearch Actions & Notifications: Use a wide range of connectors to send alerting notifications, including Slack, email, PagerDuty, JIRA, Webhooks, and Elasticsearch.
• Escalation Levels: Tailor notifications and actions to your specific use case by defining how often alerts are sent to which connector, configuring different thresholds and escalation levels, and triggering multiple alerts for each level.
• Kibana Alerting UI & REST API: Set up alerts with a fully-fledged Kibana user interface using Graph mode, Blocks mode, or JSON mode based on the complexity of your use case. Automate alerts configuration with the extensive REST API.
• Connectors: Send out email notifications, inform your team via Slack, open PagerDuty incidents, create JIRA issues, post data to Webhooks, and write data back to Elasticsearch.
• Notifications Model: Define severity levels and get notified on different channels for different levels. Send out Slack notifications for error conditions, and additional email and PagerDuty alerts for critical conditions. Get notified once an alert is resolved and everything is back to normal.

Benefits

• Free Alerting: Signals provides free alerting for Elasticsearch and Kibana, bundled and integrated with Search Guard Security.
• Integration: Fully integrated with all Search Guard Security features, allowing control over access to alerts, configuration of who can receive notifications, and separation of alert access using Search Guard MultiTenancy.
• Ease of Use: Single download and install bundled with any Search Guard download for Elasticsearch > 7.4, providing both security and alerting features.
• Compliance: Meet regulatory requirements and industry standards with comprehensive security measures.
• Peace of Mind: Ensure the safety and integrity of your data, allowing you to focus on your core business operations.