You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: docs/settings/alert-action-settings.asciidoc
+36-10Lines changed: 36 additions & 10 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -41,7 +41,7 @@ You can configure the following settings in the `kibana.yml` file.
41
41
[cols="2*<"]
42
42
|===
43
43
| `xpack.actions.enabled`
44
-
| Feature toggle that enables Actions in {kib}. Defaults to `true`.
44
+
| Feature toggle that enables Actions in {kib}. Default: `true`.
45
45
46
46
| `xpack.actions.allowedHosts` {ess-icon}
47
47
| A list of hostnames that {kib} is allowed to connect to when built-in actions are triggered. It defaults to `[*]`, allowing any host, but keep in mind the potential for SSRF attacks when hosts are not explicitly added to the allowed hosts. An empty list `[]` can be used to block built-in actions from making any external connections. +
@@ -50,7 +50,7 @@ You can configure the following settings in the `kibana.yml` file.
50
50
51
51
| `xpack.actions.customHostSettings` {ess-icon}
52
52
| A list of custom host settings to override existing global settings.
53
-
Defaults to an empty list. +
53
+
Default: an empty list. +
54
54
+
55
55
Each entry in the list must have a `url` property, to associate a connection
56
56
type (mail or https), hostname and port with the remaining options in the
@@ -70,6 +70,7 @@ You can configure the following settings in the `kibana.yml` file.
| A boolean value indicating whether to bypass server certificate validation.
121
+
| Deprecated. Use <<action-config-custom-host-verification-mode,`xpack.actions.customHostSettings.tls.verificationMode`>> instead. A boolean value indicating whether to bypass server certificate validation.
119
122
Overrides the general `xpack.actions.rejectUnauthorized` configuration
| Controls the verification of the server certificate that {hosted-ems} receives when making an outbound SSL/TLS connection to the host server. Valid values are `full`, `certificate`, and `none`.
128
+
Use `full` to perform hostname verification, `certificate` to skip hostname verification, and `none` to skip verification. Default: `full`. <<elasticsearch-ssl-verificationMode,Equivalent {kib} setting>>. Overrides the general `xpack.actions.tls.verificationMode` configuration
129
+
for requests made for this hostname/port.
130
+
122
131
| `xpack.actions.customHostSettings[n]`
123
132
`.tls.certificateAuthoritiesFiles`
124
133
| A file name or list of file names of PEM-encoded certificate files to use
| Specifies hostnames which should only use the proxy, if using a proxy for actions. The value is an array of hostnames as strings. By default, no hosts will use the proxy, but if an action's hostname is in this list, the proxy will be used. The settings `xpack.actions.proxyBypassHosts` and `xpack.actions.proxyOnlyHosts` cannot be used at the same time.
153
162
154
163
| `xpack.actions.proxyHeaders` {ess-icon}
155
-
| Specifies HTTP headers for the proxy, if using a proxy for actions. Defaults to {}.
164
+
| Specifies HTTP headers for the proxy, if using a proxy for actions. Default: {}.
156
165
157
166
a|`xpack.actions.`
158
167
`proxyRejectUnauthorizedCertificates` {ess-icon}
159
-
| Set to `false` to bypass certificate validation for the proxy, if using a proxy for actions. Defaults to `true`.
168
+
| Deprecated. Use <<action-config-proxy-verification-mode,`xpack.actions.tls.proxyVerificationMode`>> instead. Set to `false` to bypass certificate validation for the proxy, if using a proxy for actions. Default: `true`.
169
+
170
+
|[[action-config-proxy-verification-mode]]
171
+
`xpack.actions[n]`
172
+
`.tls.proxyVerificationMode` {ess-icon}
173
+
| Controls the verification for the proxy server certificate that {hosted-ems} receives when making an outbound SSL/TLS connection to the proxy server. Valid values are `full`, `certificate`, and `none`.
174
+
Use `full` to perform hostname verification, `certificate` to skip hostname verification, and `none` to skip verification. Default: `full`. <<elasticsearch-ssl-verificationMode,Equivalent {kib} setting>>.
160
175
161
176
| `xpack.actions.rejectUnauthorized` {ess-icon}
162
-
| Set to `false` to bypass certificate validation for actions. Defaults to `true`. +
177
+
| Deprecated. Use <<action-config-verification-mode,`xpack.actions.tls.verificationMode`>> instead. Set to `false` to bypass certificate validation for actions. Default: `true`. +
163
178
+
164
179
As an alternative to setting `xpack.actions.rejectUnauthorized`, you can use the setting
165
180
`xpack.actions.customHostSettings` to set TLS options for specific servers.
166
181
182
+
|[[action-config-verification-mode]]
183
+
`xpack.actions[n]`
184
+
`.tls.verificationMode` {ess-icon}
185
+
| Controls the verification for the server certificate that {hosted-ems} receives when making an outbound SSL/TLS connection for actions. Valid values are `full`, `certificate`, and `none`.
186
+
Use `full` to perform hostname verification, `certificate` to skip hostname verification, and `none` to skip verification. Default: `full`. <<elasticsearch-ssl-verificationMode,Equivalent {kib} setting>>. +
187
+
+
188
+
As an alternative to setting `xpack.actions.tls.verificationMode`, you can use the setting
189
+
`xpack.actions.customHostSettings` to set TLS options for specific servers.
0 commit comments