Hope everyone is doing well.
New Graylog Server Install - Sidecar Token missing
I installed and licensed a new Graylog server following the directions. Everything seems to be working except when you go into Sidecars. Nothing is found and if you click on Create or reuse a token for the graylog-sidecar user I get the following error. Not sure if it’s something that can be fixed or if I should start from scratch. Any help would be greatly appreciated.
Could not load tokens of user graylog-sidecar
Loading tokens of user failed with status: Error: cannot GET http://IPAddress:9000/api/users/graylog-sidecar/tokens (404)
[root@GrayLog ~]# tail -f /var/log/graylog-server/server.log
2020-10-09T09:42:38.095-04:00 WARN [IndexFieldTypePollerPeriodical] Interrupted or timed out waiting for Elasticsearch cluster, checking again.
2020-10-09T09:42:38.095-04:00 WARN [V20161130141500_DefaultStreamRecalcIndexRanges] Interrupted or timed out waiting for Elasticsearch cluster, checking again.
2020-10-09T09:43:06.852-04:00 ERROR [Cluster] Couldn’t read cluster health for indices [graylog_*] (Could not connect to http://IPAddress:9200)
2020-10-09T09:43:06.852-04:00 INFO [IndexerClusterCheckerThread] Indexer not fully initialized yet. Skipping periodic cluster check.
If I go into Search the Message Count and All Messages state
While retrieving data for this widget, the following error(s) occurred:
- Connection refused (Connection refused).