Graylog Operations is a single package that includes the Graylog enterprise installation file.
Requirements
Graylog Operations has the following prerequisites:
- Operating Systems:
- Debian 10, 11
Ubuntu 22.04
RHEL/CentOS/AlmaLinux/Rocky Linux 9
- Elasticsearch 7.10.2 OR OpenSearch 2.x
- MongoDB 5.x or 6.x
- OpenJDK 17 (embedded in the 5.0 installation file)
Installation
DEB / APT
For installation on APT-based systems, such as Debian or Ubuntu, run the following commands:
sudo apt-get install apt-transport-https
wget https://packages.graylog2.org/repo/packages/graylog-<server_version>-repository_latest.deb
sudo dpkg -i graylog-<server_version>-repository_latest.deb
sudo apt-get update
sudo apt-get install graylog-enterprise
RPM / YUM / DNF
For installation on RPM-based systems, such as CentOS or Red Hat, run the following commands:
sudo rpm -Uvh https://packages.graylog2.org/repo/packages/graylog-<server_version>-repository_latest.rpm
sudo yum install graylog-enterprise
Edit the Configuration File
Read the instructions within the configuration file, and edit as needed.
The configuration file is at
Additionally, add
/etc/graylog/server/server.conf
. password_secret
and
, as these are
mandatory, and Graylog will not start without them.root_password_sha2
To create your
run the following command:root_password_sha2
,
echo -n "Enter Password: " && head -1 </dev/stdin | tr -d '\n' | sha256sum | cut -d" " -f1
To connect to Graylog, set
to the public host name or a
public
IP address for the machine you can connect to. Find more information about these settings in
Configuring the web interface.https_bind_address
Starting Graylog
Start Graylog with the command based on your operating system below.
OS |
Init System |
Command |
---|---|---|
RedHat/CentOS/AlmaLinux/Rocky Linux 9 |
systemd |
|
Debian 10 & 11, Ubuntu 22.04 |
systemd |
|
The packages are configured to not start any Graylog services during boot. You can use the following commands to start Graylog when the operating system boots up:
OS |
Init System |
Command |
---|---|---|
RedHat/CentOS/AlmaLinux/Rocky Linux 9 |
systemd |
|
Debian 10 & 11, Ubuntu 22.04 |
systemd |
|
Cluster Setup
If you run a Graylog cluster, add the enterprise plugins to every Graylog node. Your
load-balancer must route /api/plugins/org.graylog.plugins.archive/
only to the
Graylog master node. Future versions of Graylog will automatically forward these requests to the correct node.