Skip to main content

Documentation Index

Fetch the complete documentation index at: https://docs.ewake.ai/llms.txt

Use this file to discover all available pages before exploring further.

What you’ll get: ewake can query your Elasticsearch indices to retrieve logs, correlate log patterns with alerts, and surface relevant data during investigations, without requiring manual query construction.

Prerequisites

  • An Elasticsearch instance (Elastic Cloud or self-hosted)
  • Admin access to create an API key

Configuration

1

Create an API key in Elasticsearch

In Elasticsearch, go to Stack ManagementSecurityAPI Keys → click Create API key.Set the key privileges to read-only on the indices ewake should access:
{
  "indices": [{
    "names": ["*"],
    "privileges": ["read", "view_index_metadata"]
  }]
}
Copy the generated API key immediately, it won’t be shown again.
2

Open the Elasticsearch integration in ewake

In your ewake dashboard, go to IntegrationsElasticsearch → click Configure.Connect to Elasticsearch modal in ewake
3

Enter your credentials

FieldValue
Elasticsearch Base URLYour cluster URL (e.g. https://my-cluster.es.io:9243)
API KeyThe key created in Step 1
4

Test and save

Click Test Configuration to verify the connection, then click Save.
Elasticsearch is connected. Ewake can now query your logs during investigations.
Ewake uses read-only access. It never writes to or modifies your Elasticsearch indices.