Elastic Agent

The modern, unified way to ship data to elasticsearch. A single agent installed on a host can collect logs, metrics, security threat data, OS query data, and data from remote services — replacing the need for multiple Beats shippers.

Key Facts

• One agent per host, one policy per agent
• Add integrations to the policy to support new data sources
• Managed centrally via Fleet in kibana
• Supports processors to sanitize or enrich data before shipping
• Replaces Beats for most use cases

See Also

• elastic-stack — the broader platform
• fleet — the management layer for Elastic Agent
• logstash — use Logstash instead when complex ETL is needed
• elasticsearch — where the agent ships data