Cloud

Connect OpenSearch

Reads OpenSearch cluster health plus aggregate Alerting and Security Analytics summaries where available, without storing raw documents.

What you'll need

An OpenSearch base URL and either an API key or username/password with read-only cluster, alerting, and security analytics permissions.

Credential

Read-only API key or basic auth

Requested scopes

cluster monitor, alerting read, security analytics read

Powers

Cloud Health, Security Readiness

What it pulls

Cluster health, bounded Alerting monitor/alert summaries, and size-zero Security Analytics severity aggregations where installed.

What you’ll enter

The exact fields the connect form asks for — and where to find each value.

OpenSearch base URL
Your OpenSearch cluster root URL. The connector validates cluster health and reads aggregate alert/security analytics summaries when available.
API keyoptional
Use a read-only key where your OpenSearch distribution supports API keys.
Usernameoptional
Optional fallback if you authenticate with basic auth.
Passwordoptional
Optional fallback paired with Username.

Step-by-step setup

  1. 1

    Enter the cluster URL

    Use the OpenSearch root URL that exposes _cluster/health.

  2. 2

    Provide read auth

    Use a read-only API key where supported, or basic auth with monitor, alerting, and security analytics read access.

  3. 3

    Connect

    Click Connect. We validate cluster health, then sync aggregate alert and security analytics summaries where available.

Create OpenSearch credentials → Connect in the app

Read-only adapter implemented with mocked-fetch coverage; plugin endpoints are optional and omitted when unavailable.