This is how I connected Grafana to Graylog’s OpenSearch backend. It was not intuitive trying to follow other forum posts. I do not know why that was, maybe because I have installed Graylog in a LXC on Proxmox through Proxmox helper scripts? I could not for the life of me find System > Data Nodes which was stated in the documentation. Anyways.
Prerequisites:
- Grafana v12.1.1
- Graylog 6.3.3
In Graylog, go to
System > Cluster Configuration and the tab “Certificate Management”. Click on “Generate client Certificate”.
Principal: FQDN (for the client server, basically just an unique identifier).
Role: all_access (I guess I want read only access, but I am not sure where to find predefined roles or what else to write here?)
Password: Create a password that you remember
Certificate Lifetime: Choose appropriately
Click on Create Certificate.
Copy all of the available information in to individual files.
Through the terminal of your choice, decrypt the password protected private key.
openssl rsa -in private.crt -out private_decrypt.crt
Make sure that you have installed the OpenSearch plugin in Grafana.
Go to Connections > Data sources > Add new data source and select Type: OpenSearch.
URL is https://ip-address:9200 (default port for datanode is 9200)
Select “TLS Client Auth”
Select “Skip TLS Verify”
Select “With CA Cert”
And just paste in the available information you have. One have to utilize the decrypted private key in order to get this working.