OrcacoreLinux TutorialsAdvanced Linux

How To Install Grafana on Ubuntu 22.04

By daniel
2
87
Install Grafana on Ubuntu 22.04

In this guide, we want to teach you How To Install Grafana on Ubuntu 22.04.

Grafana is open-source analytics and interactive visualization web application. It allows you to ingest data from a huge number of data sources, query this data and display it on beautiful customizable charts for easy analysis.

It is also possible to set alerts so you can quickly and easily be notified of abnormal behavior and lots more. In simple terms, Grafana allows you to transform the mountain of performance metric data collected from your applications, into visualizations. This will allow you to draw conclusions and make decisions to keep your application stack healthy.

Steps To Install Grafana on Ubuntu 22.04

To complete this guide, you must log in to your server as a non-root user with sudo privileges and set up a basic firewall. To do this, you can follow our guide the Initial Server Setup with Ubuntu 22.04.

And you need to have Nginx installed on your server to use it as a reverse proxy for Grafana. To do this, you can follow the installation part of our article about How To Install Nginx on Ubuntu 22.04.

Also, you need a domain name that points to your IP address.

Set up Grafana on Ubuntu 22.04

Grafana is not available in the default Ubuntu repository. So you need to add the Grafana repository to your server.

First, install the required packages with the command below:

sudo apt install -y gnupg2 wget software-properties-common

Then, add the GPG public key with the following command:

sudo wget -q -O - https://packages.grafana.com/gpg.key | sudo apt-key add -

Next, add the Grafana repo on Ubuntu 22.04 with the following command:

sudo add-apt-repository "deb https://packages.grafana.com/oss/deb stable main"

Update your local package index with the following command:

sudo apt update

Here you can install Grafana with the following command:

sudo apt install grafana

Verify your Grafana installation by checking its version:

grafana-server -v

In your output you will see:

Output
Version 9.1.6 (commit: 92461d8d1e, branch: HEAD)

Now start and enable the Grafana service to start at boot with the following commands:

sudo systemctl enable grafana-server
sudo systemctl start grafana-server

You can check that your Grafana service is active and running on Ubuntu 22.04 with the command below:

sudo systemctl status grafana-server

In your output you will see:

Output
● grafana-server.service - Grafana instance
     Loaded: loaded (/lib/systemd/system/grafana-server.service; enabled; vendo>
     Active: active (running) since Thu 2022-09-22 09:13:38 UTC; 9s ago
       Docs: http://docs.grafana.org
   Main PID: 4023 (grafana-server)
      Tasks: 10 (limit: 4575)
     Memory: 37.3M
        CPU: 1.046s
     CGroup: /system.slice/grafana-server.service
             └─4023 /usr/sbin/grafana-server --config=/etc/grafana/grafana.ini

Configure Firewall For Grafana (Optional)

Grafana’s default http port is 3000, you’ll need to allow access to this port on the firewall.

Here we assumed that you have enabled UFW firewall from the requirements.

Open port 3000 on the Ubuntu 22.04 firewall: 

sudo ufw allow 3000/tcp

To allow access only from a specific subnet, you can use the following command:

sudo ufw allow from 192.168.50.0/24 to any port 3000

Reload the firewall to apply the new rules:

sudo ufw reload

Set up Nginx as a Reverse Proxy for Grafana on Ubuntu 22.04

At this point, you will need to configure Nginx as a reverse proxy for Grafana to access it via port 80. 

First, you need to create an Nginx virtual host configuration file with your favorite text editor, here we use vi:

sudo vi /etc/nginx/conf.d/grafana.conf

Add the following content to the file:

server {
        server_name example.com;
        listen 80;
        access_log /var/log/nginx/grafana.log;

        
        location / {
                proxy_pass http://localhost:3000;
                proxy_set_header Host $http_host;
                proxy_set_header X-Forwarded-Host $host:$server_port;
                proxy_set_header X-Forwarded-Server $host;
                proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
        }
}

When you are done, save and close the file.

To make sure that everything is ok, you can run the following command:

sudo nginx -t

In your output you will see:

Output
nginx: the configuration file /etc/nginx/nginx.conf syntax is ok
nginx: configuration file /etc/nginx/nginx.conf test is successful

Next, restart the Nginx to apply the configuration changes:

sudo systemctl restart nginx

You can also check the Nginx status with the following command:

sudo systemctl status nginx

You will get the following output:

Output
● nginx.service - A high performance web server and a reverse proxy server
     Loaded: loaded (/lib/systemd/system/nginx.service; enabled; vendor preset:>
     Active: active (running) since Thu 2022-09-22 09:25:06 UTC; 16s ago
       Docs: man:nginx(8)
    Process: 5595 ExecStartPre=/usr/sbin/nginx -t -q -g daemon on; master_proce>
    Process: 5596 ExecStart=/usr/sbin/nginx -g daemon on; master_process on; (c>
   Main PID: 5599 (nginx)
      Tasks: 3 (limit: 4575)
     Memory: 3.3M
        CPU: 44ms
...

Now Nginx is configured as a reverse proxy for Grafana on Ubuntu 22.04. You can now proceed to the next step.

Access Grafana Web Console

At this point, you can access the Grafana web interface on Ubuntu 22.04 by typing your domain name in your web browser followed by 3000:

http://your-domain-name:3000

You will see the login interface. Enter admin for the username and password and click Log in.

Grafana Login screen

Then you’ll be asked to renew your password and click submit.

Change Grafana default password

When you have changed your password you will see the Grafana welcome dashboard:

Grafana dashboard on Ubuntu 22.04

Now you can proceed to the next step to secure your Grafana service.

Secure Grafana with Let’s Encrypt

At this point, you will need to install the Certbot client package to install and manage the Let’s Encrypt SSL.

To do this, run the command below:

sudo apt install certbot python3-certbot-nginx -y

Once the installation is finished, run the following command to install the Let’s Encrypt SSL on your website:

sudo certbot --nginx -d example.com

You will be asked to enter your Email address and accept the term of service:

Output

Enter email address (used for urgent renewal and security notices)
 (Enter 'c' to cancel): [email protected]

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Please read the Terms of Service at
https://letsencrypt.org/documents/LE-SA-v1.3-September-21-2022.pdf. You must
agree in order to register with the ACME server. Do you agree?
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
(Y)es/(N)o: Y

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Would you be willing, once your first certificate is successfully issued, to
share your email address with the Electronic Frontier Foundation, a founding
partner of the Let's Encrypt project and the non-profit organization that
develops Certbot? We'd like to send you email about our work encrypting the web,
EFF news, campaigns, and ways to support digital freedom.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
(Y)es/(N)o: N
Account registered.
Requesting a certificate for example.com

Successfully received certificate.
Certificate is saved at: /etc/letsencrypt/live/example.com/fullchain.pem
Key is saved at:         /etc/letsencrypt/live/example.com/privkey.pem
This certificate expires on 2022-12-21.
These files will be updated when the certificate renews.
Certbot has set up a scheduled task to automatically renew this certificate in the background.

Deploying certificate
Successfully deployed certificate for example.com to /etc/nginx/conf.d/grafana.conf
Congratulations! You have successfully enabled HTTPS on https://example.com

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
If you like Certbot, please consider supporting our work by:
 * Donating to ISRG / Let's Encrypt:   https://letsencrypt.org/donate
 * Donating to EFF:                    https://eff.org/donate-le
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Now you can load your website by https:// and notice your browser’s security indicator.

https://your-domain

As you know Let’s Encrypt certificates are valid for 90 days. Because of this, you can renew your process.

You can test the renewal process with certbot:

sudo certbot renew --dry-run
Output
...
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Congratulations, all simulated renewals succeeded:
  /etc/letsencrypt/live/example.com/fullchain.pem (success)
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Conclusion

At this point, you have learned to Install Latest Grafana on Ubuntu 22.04 and set up Nginx as a reverse proxy for it. Also, you have learned to secure your website with Let’s Encrypt.

Hope you enjoy it.

For more guides, you can visit the OrcaCore Website.

2 COMMENTS

LEAVE A REPLY

Please enter your comment!
Please enter your name here

Latest Articles

POPULAR TAGS

AlmaLinuxRocky LinuxUbuntu 22.04Debian 11Ubuntu 20.04CentOS 7Linux Commandswindows server
Most Popular

OrcaCore is an educational site that tries to provide useful content to all users for free. The OrcaCore team consists of experienced experts in the field of Linux training, Windows training, security training, etc., who try to meet the training needs of users as best as possible.

© Copyright - OrcaCore Team