Changing the location of Elasticsearch index data - Online help | EventLog Analyzer

Changing the location of Elasticsearch index data

Follow the steps below to move the log indices to a different location:
  1. Stop the EventLog Analyzer service.
  2. Open the command prompt with admin privileges.
  3. Navigate to <dir>:\ManageEngine\elasticsearch\ES\bin and execute stopES.bat.
  4. Make a backup of the <dir>:\ManageEngine\elasticsearch\ES\config\elasticsearch.yml file.
  5. In the command prompt, navigate to <dir>:\ManageEngine\elasticsearch\ES\config and execute write elasticsearch.yml.
  6. Update the path.data and path.repo parameters with the new location, and save the file.
  7. Start EventLog Analyzer to complete the process. 
Changing location of index (ES) data

Note: For Linux local storage, use the following format:
  1. path.data : ["/opt/ManageEngine/EventLog Analyzer/ES/data"]
  2. path.repo : ["/opt/ManageEngine/EventLog Analyzer/ES/repo"


      New to M365 Manager Plus?
      New to M365 Manager Plus?
        New to RecoveryManager Plus?
        New to RecoveryManager Plus?
          New to Exchange Reporter Plus?
          New to Exchange Reporter Plus?
            New to SharePoint Manager Plus?
            New to SharePoint Manager Plus?
                See all integrations
                New to ADManager Plus?
                See all integrations
                New to ADManager Plus?

                  New to ADSelfService Plus?

                  Start your free trial
                  Start your free trial

                    • Related Articles

                    • How to migrate live Data (ES data) from one location to another | Linux

                      Objective This article provides a detailed step-by-step guide to migrate EventLog Analyzer live data or data stored in Elasticsearch (ES) to a different location or server. Prerequisites Access to the EventLog Analyzer console as an admin Access to ...

                    • Error: Low memory detected on Log360's Elasticsearch

                      Issue description When using build version 12411 and below, you may get this in-product critical notification: Low memory detected on Log360's elasticsearch, increase the memory to at least X GB. This article explains the error message and what ...

                    • How does EventLog Analyzer store the collected data

                      Objective This document provides details on how EventLog Analyzer stores the collected event logs or data. Prerequisites Understanding of the duration of log management needed by the organization. Understanding of the duration of logs searched by ...

                    • How to migrate the EventLog Analyzer ZIP file from one location to another in a Linux instance

                      Objective This article provides a detailed step-by-step guide to migrate EventLog Analyzer archives to a new server or different drive in a Linux instance. Users can migrate ZIP files to local paths orS3 bucket locations. Prerequisites Ensure ...

                    • No data or logs collected from syslog device

                      Issue description During the initial setup or while using EventLog Analyzer, you might notice that logs are not being collected from a syslog device or that syslog device reports do not show any recent data. EventLog Analyzer uses device status ...

                      Related Products