Starting in version 7.16, this experimental functionality has been removed. You should use the journald input in Filebeat instead.
« Settings for legacy collection Grant users access to secured resources »
Elastic Docs Journalbeat Reference [7.15]

Secure Journalbeat

edit
IMPORTANT: This documentation is no longer updated. Refer to Elastic's version policy and the latest documentation.

Secure Journalbeat

edit

The following topics provide information about securing the Journalbeat process and connecting to a cluster that has security features enabled.

You can use role-based access control and optionally, API keys to grant Journalbeat users access to secured resources.

After privileged users have been created, use authentication to connect to a secured Elastic cluster.

On Linux, Journalbeat can take advantage of secure computing mode to restrict the system calls that a process can issue.

« Settings for legacy collection Grant users access to secured resources »