Unable to start elasticsearch when auto_create_index is set to false

dcfasika · March 23, 2020, 1:36pm

I installed elasticsearch latest version (7.6) and added the below in the elasticsearch.yml file.

cluster.name: graylog
action.auto_create_index: false.

For some reason, it doesn’t like the action.auto_create_index setting and due to this, it won’t come up. If I comment it out, it comes up but getting this error when I click on received messages. I do see in/out and also can see the messages being received but this error shows up when i click on received messages. And due to this, I can’t create extractor.

While retrieving data for this widget, the following error(s) occurred:

Unable to perform search query: [query_string] query does not support [use_dis_max].

Can you please help on this? Thanks.

macko003 · March 23, 2020, 2:38pm

Maybe you missed the docs, please check it.
https://docs.graylog.org/en/3.2/pages/installation.html#system-requirements

tmacgbay · March 23, 2020, 2:53pm

macko003 · March 23, 2020, 3:35pm

You are too kind. Give a chance to read.

system · April 6, 2020, 3:35pm

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Elasticsearch configuration for graylog action.auto_create_index: false throwing error Graylog Central (peer support)	15	4491	May 23, 2022
ElasticSearch crashing due to auto_create_index problem Graylog Central (peer support)	4	934	November 20, 2019
Graylog Elasticsearch Auto Index Graylog Central (peer support)	3	859	May 13, 2019
Meaning of 'action.auto_create_index: false' Graylog Central (peer support)	5	9749	March 7, 2019
Deflector exists as an index and is not an alias / cannot remove index Graylog Central (peer support)	4	1948	January 3, 2020

Unable to start elasticsearch when auto_create_index is set to false

Related topics