Stack Overflow
Stack Overflow

Questions tagged [elasticsearch-shield]

Shield is the security layer in Elasticsearch

Shield installs as a plugin in Elasticsearch.

An Elasticsearch cluster benefits from properly implemented security with Shield in the following ways:

  • Role-based access control at the index level and LDAP authentication integration to prevent unauthorized access

  • Encryption to preserve the integrity of your data, keeping confidential data confidential.

  • An Audit trail to analyze access patterns.

33 questions
9
votes
1 answer

Elasticsearch: Data Encryption at Rest

I am trying to encrypt the Elasticsearch data. Are there any native methods to encrypt the data? I studied about Elasticsearch supporting dm-crypt, but there are no proper supporting documents on how it is being implemented. Also, my clients need…
sriramsm04
  • 343
  • 1
  • 7
  • 22
4
votes
0 answers

Elasticsearch authentication error with shield

It's very stange to see this scenario, Environment Elasticsearch 2.0 and kibana 4.2 Shield version 2.0 I have created the users and roles but If I run the elasticsearch I can see the following warning [2015-12-12 02:39:08,936][INFO ][node …
prem
  • 572
  • 2
  • 7
  • 26
4
votes
1 answer

How to reset password for Shield in Elasticsearch

Context: Setting up Shield on my local machine for a 1 node Elasticsearch Machine: Mac OSX 10.9.5 After installing Shield, I tried adding admin users but failed to do so because initially I did not restart my ES. During this attempt, I tried a bunch…
ChickenWing24
  • 205
  • 3
  • 12
4
votes
1 answer

Logstash not writing to Elasticsearch with Shield

I have been trying to make logstash write to elasticseach with shield without success. My setup was working nromally before installing the shield plugin to elasticsearch. I've followed this guide from elastic.co and created a new user for the…
zabal zabaleta
  • 43
  • 5
3
votes
0 answers

Can someone please explain how to use Kibana dashboards from a .Net web application without viewing other users' data?

In an forthcoming web application, we will be using ElasticSearch as the repo for our .Net-based web application. I would like to be able to create a set of dashboards in Kibana that will reflect each user's specific data. That is, a logged in user…
ElHaix
  • 12,846
  • 27
  • 115
  • 203
2
votes
1 answer

Can't connect to ElasticSearch server using Java API and shield

I am trying to connect to my Elasticsearch server using the Java Api and shield. I can execute index, get, delete and search operations on the existing cluster using sense plugin (e.g) and via curl on 9200. I've seen other threads about this but…
Emanuel
  • 31
  • 8
2
votes
1 answer

Elasticsearch Shield Plugin - Users can not be authenticated, even users with Admin Privileges

I'm having an issue with the Shield plugin for Elasticsearch. I have installed elasticsearch so that it runs as a service, and I can see that it is running on port 9200. If I enter curl http://localhost:9200 in my Mac terminal I get the correct…
x3nr0s
  • 1,946
  • 4
  • 26
  • 46
2
votes
1 answer

Elasticsearch Shield SSL with letsencrypt failed to sign csr ERROR

I`m trying to sign csr file to get signed certificate by letsencrypt and use it with Elasticsearch Shield. Creating the csr file: cd CONFIG_DIR/shield keytool -importcert -keystore node01.jks -file letsencrypt_public.pem -alias letsencrypt keytool…
user2552806
2
votes
1 answer

ElasticSearch Shield integration with Azure Active Directory

I want to integrate Azure Active Directory with Shield (an ElasticSearch plugin) and trying to figure out what values I need to specify in this section of Shiled configuration shield: authc: realms: active_directory: type:…
StackOfStacks
  • 83
  • 7
2
votes
0 answers

Authentication issue in Elasticsearch with Shield

I've installed Shield plugin for ES and configured users with roles. But when I try to index some data with configured user, I always received this error: [2015-11-22 10:31:58,795][INFO ][rest.suppressed ]…
4ybaka
  • 2,954
  • 4
  • 16
  • 21
2
votes
1 answer

Using Kibana after shield license expired

Is there a way to use Kibana 4 after shield license expired? After read shield documentation, I see the next paragraph: When the license for Shield is expired, Shield will block requests to the cluster health, cluster stats, and index stats…
klingsor
  • 21
  • 5
2
votes
1 answer

Can't add admin in Shield Elasticsearch - [Error]Could not find or load main class org.elasticsearch.shield.authc.esusers.tool.ESUsersTool

I am trying out Shield as a security measure for my Kibana and Elasticsearch. Running on Mac OS X 10.9.5 Followed the documentation from Elastic. Managed to install Shield. Since my Elasticsearch is running automatically, I skipped step 2(start…
ChickenWing24
  • 205
  • 3
  • 12
2
votes
2 answers

ELK - Shield auth problems

I'm trying to setup Shield for Elasticsearch, but had some trouble When I try to start Elasticsearch like: /usr/share/elasticsearch/bin/elasticsearch all work as expected, but when I'm trying to start/restart Elasticsearch like: …
oleksii
  • 1,367
  • 2
  • 10
  • 11
1
vote
0 answers

Create a new role dynamically using Elasticsearch Java Client

I have an elasticsearch(2.4.4) server and I'm using elasticsearch java client to manage indicies. I've added authentication with elasticsearch shield plugin(2.2.0) and it works properly. Now, i want to create new roles dynamically but it seems that…
ersanceylan
  • 71
  • 4
1
vote
1 answer

Can't add an admin in elasticsearch Shield [Error]: Could not find or load main class org.elasticsearch.shield.authc.esusers.tool.ESUsersTool

Good Morning I am trying since yesterday to add an admin account to the elasticsearch 2.4 shield plugin. I am using Ubuntu 14.04 on one node and Ubuntu 16.04 on the two other nodes. I have installed the Shield plugin on my Logstash Server and there…
Pascal Hurni
  • 37
  • 8
1
2 3