Sidecar installation and startup on RHEL 9

d_a_parker · February 4, 2026, 3:35pm

Hi all,

I’m trying to deploy a Linux sidecar and filebeat collector on a host running RHEL 9, to send logs to a new Graylog 7 server. I’m following the documentation found here, but running into an issue with enabling and starting the sidecar service. These are the general steps I have taken so far:

Downloaded and installed the repo:
wget ``https://packages.graylog2.org/repo/packages/graylog-sidecar-1.5-repository_latest.rpm
sudo rpm -i graylog-sidecar-1.5-repository_latest.rpm
Installed graylog-sidecar:
sudo yum install graylog-sidecar
Edited /etc/graylog/sidecar/sidecar.yml and set the appropriate config values

The next step is to enable and start the graylog-sidecar service, but systemctl threw an error:

$ sudo systemctl enable graylog-sidecar
Failed to enable unit: Unit file graylog-sidecar.service does not exist.

And indeed, the graylog-sidecar RPM does not include any systemd service files:

$ rpm -ql graylog-sidecar
/etc/graylog
/etc/graylog/sidecar
/etc/graylog/sidecar/sidecar.yml
/usr/bin/graylog-sidecar
/usr/lib/.build-id
/usr/lib/.build-id/74
/usr/lib/.build-id/74/79b116ac3037ce65f85f9a24132b1b4491c19d
/usr/lib/.build-id/f3
/usr/lib/.build-id/f3/9f274352929440b2c54bf9ec01f13c2c10bbb7
/usr/lib/graylog-sidecar
/usr/lib/graylog-sidecar/auditbeat
/usr/lib/graylog-sidecar/filebeat
/var/lib/graylog-sidecar
/var/lib/graylog-sidecar/generated
/var/log/graylog-sidecar
/var/run/graylog-sidecar

Has there been a change to the sidecar RPM deployment procedure? Or did I install the wrong package, perhaps?

Any help is greatly appreciated!

d_a_parker · February 4, 2026, 3:58pm

Ok, I solved the issue. The documentation is missing a critical step. You first need to run:

sudo graylog-sidecar -service install

The systemd unit file gets created, and then systemctl works as expected.

Found the answer thanks to pointers in a few previous topics:
https://community.graylog.org/t/installing-graylog-sidecar-on-linux-2-x-rhel-6/
https://community.graylog.org/t/unit-graylog-sidecar-service-not-found-ubuntu-linux-20-04

Joel_Duffield · February 4, 2026, 4:28pm

Ya the docs used to include

vi /etc/graylog/sidecar/sidecar.yml

sudo graylog-sidecar -service install

sudo systemctl enable graylog-sidecar
sudo systemctl start graylog-sidecar

Here is the older page, I’ll check with the docs team on why it’s gone missing in the current version.

d_a_parker · February 4, 2026, 4:38pm

Thanks, Joel!

The link to the GitHub page is also gone, and that would have been very handy to have because graylog-sidecar<version>.rpm does not intuitively translate to graylog-sidecar-1.5-repository_latest.rpm when you’re trying to download that first RPM. I had to look through the repo site in a browser to find the actual URL of that file, but it’s readily accessible on the GitHub page.

Topic		Replies	Views
Installing graylog-sidecar on Linux 2.X/RHEL 6 Graylog Central (peer support) sidecar	1	384	May 27, 2024
Unit graylog-sidecar.service not found (Ubuntu Linux 20.04) Graylog Central (peer support) sidecar , filebeat-linux , nosendlogfblx , failoadcongfigfblx	11	2923	October 26, 2021
Issue with Sidecar on linux (used to work) after restart stopped Graylog Central (peer support) sidecar , filebeat-linux	8	1187	February 24, 2020
Installing sidecar Graylog Central (peer support) sidecar , nxlog , filebeat-linux , nodatanx , nosendlogfblx	22	8275	February 14, 2019
Graylog sidecar rpm repo problem Graylog Central (peer support) sidecar	2	26	June 1, 2026

Sidecar installation and startup on RHEL 9

Related topics