elastic · andrewvc · Dec 19, 2019 · Dec 18, 2019 · Dec 19, 2019 · Dec 19, 2019
@@ -87,7 +87,7 @@ options that are specific to that monitor type.
 The type of monitor to run. One of:
 
 * `icmp`: Uses an ICMP (v4 and v6) Echo Request to ping the configured hosts.
-Requires root access. See <<monitor-icmp-options>>.
+Requires special permissions or root access. See <<monitor-icmp-options>>.
 * `tcp`: Connects via TCP and optionally verifies the endpoint by sending and/or
 receiving a custom payload. See <<monitor-tcp-options>>.
 * `http`: Connects via HTTP and optionally verifies that the host returns the
@@ -231,7 +231,15 @@ the output document. By default, `keep_null` is set to `false`.
 
 These options configure {beatname_uc} to use ICMP (v4 and v6) Echo Requests to check
 the configured hosts. These options are valid when the <<monitor-type,`type`>> is
-`icmp`.
+`icmp`. Please not that on most platforms one must execute Heartbeat with elevated permissions
+to perform ICMP pings.
+
+On Linux regular users may perform pings if the right file capabilities are set. You can run
+`sudo setcap cap_net_raw+eip /path/to/heartbeat` to  grant {beatname_uc} ping capabilities on Linux.
+Alternatively, one may grant ping permissions the user {beatname_uc} runs as. To grant ping permissions
+in this way run `sudo sysctl -w net.ipv4.ping_group_range='myuserid myuserid'`.
+
+On other platforms running {beatname_uc} as root or administrator may be required to execute pings.
 
 [float]
 [[monitor-icmp-hosts]]