[System] add support to ignore all "unknown" or "unavailable" filesystems #11189
Labels
Integration:system
System
needs:triage
Team:Obs-InfraObs
Label for the Observability Infrastructure Monitoring team [elastic/obs-infraobs-integrations]
Heya,
related to #11188. This issue (here) in my case is the root cause for #11188.
When running Elastic Agent in unprivileged mode the system integration works (with some adjustments) reasonable well, even while (officially) requiring "run as root".
The biggest headache was how to fix metric alerts for unknown fileystems the
elastic-agent-user
does not have permission for. Node Exporter for Prometheus just ignores them. So I asked the customer experience team and they said: yeah, it's possible in metricbeat: just add "unavailable" and/or "unknown" to the list of filesystems to ignore as described in the documentation.Turns out: this does not seem to work with Elastic Agent and the "system integration".
(the defaults + the
ignore_types
)This has no effect for unavailable/unknown filetypes (lacking permissions) - other users have the very same problem. I have to add the types I want to/have to ignore explicitly one by one.
It would be nice to have support for the "magic"(?)
unknown
/unavailable
"types" described in the Metricbeat documentation.Thank you for your feedback.
The text was updated successfully, but these errors were encountered: