Stack Overflow
Stack Overflow

Questions tagged [elasticsearch-x-pack]

X-Pack is an Elastic Stack extension that bundles security, alerting, monitoring, reporting, and graph capabilities into one easy-to-install package. While the X-Pack components are designed to work together seamlessly, you can easily enable or disable the features you want to use.

140 questions
1
vote
3 answers

Apply security on ELK Cluster - authentication issue

I have a 7.6.2 cluster of three nodes and want to apply the x-pack security. So I've updated my elasticsearch.yml conf. I first want to set password /usr/share/elasticsearch/bin/elasticsearch-setup-passwords auto Unexpected response code [405] from…
glmrenard
  • 675
  • 1
  • 8
  • 16
1
vote
3 answers

how to password protect Elastic search

I have Es version 7.6.2 I saw on website that from version 6.2 onwards x-pack is included by default but i was not able to find or enable x-pack for security. how do i enable password protection in Elastic search.
rahul
  • 232
  • 1
  • 5
  • 13
1
vote
0 answers

What is the watcher management & execution node

We have an elastic cluster with a huge watcher count. Because of that, we have a continuous search load with peaks, but able to handle it. In the perspective of a growing number of watchers, we are not sure if the current implementation is really…
ibexit
  • 3,465
  • 1
  • 11
  • 25
1
vote
1 answer

Giving read only access to a user IBM Cloud Elasticsearch

I want to have a user which has a read-only access to a given index. I have read the Elasticsearch documentation and learnt that this can be achieved using the xpack API provided by Elasticsearch as a security feature. Now I am using "IBM Cloud…
Rafayullah Choudhary
  • 11
  • 2
1
vote
1 answer

Email alert based on monitors going down / coming back up

I am fairly new to this but I need some help with my watcher setup. - I am using the X-Pack Watchers. I have setup Heartbeat and I currently have 7 monitors. i.e monitor-01 monitor-02 etc. I need help setting up my exact scenarios, I need help with…
William
  • 1,009
  • 15
  • 41
1
vote
0 answers

Elasticsearch enable security issues

I have a Elasticsearch 7.6 cluster installed base on https://github.com/openstack/openstack-helm-infra/tree/master/elasticsearch Following is what I did to enable security: a. Generate certificate ./bin/elasticsearch-certutil ca File location:…
will
  • 11
  • 1
1
vote
0 answers

Anomaly detection on Azure Databricks Diagnostic audit logs

I have a lot of audit logs coming from the Azure Databricks clusters I am managing. The logs are simple application audit logs in the format of JSON. You have information about jobs, clusters, notebooks, etc. and you can see a sample of one record…
dadadima
  • 938
  • 4
  • 28
1
vote
1 answer

Elasticsearch search request restrict to only certain server IPs

Is it possible to create a filter of some sort in elasticsearch, such that the search request will be honored only if the request is from trusted IP (certain servers only). I referred to this post however, would like to check if the latest versions…
AKV
  • 183
  • 4
  • 24
1
vote
0 answers

Elasticsearch on K8S with XPack

I have few queries regarding setting up ES on kubernetes as we are currently facing issues while enabling basic security in our 3 master, 2 data and 2 client node configuration 1 Is the helm chart stable/elasticsearch supported for version…
sibh8
  • 23
  • 1
  • 3
1
vote
0 answers

Create API keys on ElasticSearch with limited search capabilities

I want to create API keys on elasticsearch via POST _security/api_key API, I am able to create these but I want to limit search capability for the generated key which I am unable to do. Essentially, what I want to achieve is let's say that all my…
codechef123
  • 13
  • 5
1
vote
0 answers

Can we filter document in nested object with user.metadata jobs?

I am searching to filter what can see users in an Elasticsearch index, futhermore I want to filter some document into a nested object. I will explain a short scenario: We got two users: Alice and Bob Alice work on X and Bob work on Y We got document…
jonathan
  • 11
  • 1
1
vote
0 answers

No results from search when passing more than one parameter in user metadata

I want to apply document level security in elastic, but once I provide more than one value in user metadata I get no matches. I am creating a role and a user in elastic and passing values inside user metadata to the role on whose basis the search…
Nayibedya Pratik Mishra
  • 11
  • 1
1
vote
0 answers

x-pack alert plugin in kibana 6.6.1

I am working with elasticsearch 6.6.1 and kibana 6.6.1.Upon installing x-pack plugin it is giving the error "you are using the OSS-only distribution of Kibana. As of version 6.3+ X-Pack is bundled in the standard distribution of this software by…
Priya
  • 11
  • 3
1
vote
0 answers

Is Xpack mandatory for cross cluster search with encryption

I have a OSS elasticsearch with SearchGuard plugin for HTTP and transport encryption in single cluster. I want to be able to do a cross cluster search across two such cluster. Is X-pack mandatory (to create that user / role) to search across local…
Urvishsinh Mahida
  • 1,440
  • 16
  • 23
1
vote
0 answers

Cannot access grokdebugger in Kibana 6 on FreeBSD 11

It appears that my kibana installation did not contain the grokdebugger plugin since I was not able to find it in /usr/local/www/kibana6/ and it did not appear under the Dev Tools pane. I did install it by installing x-pack using…
ksdnfakjn
  • 11
  • 2
1 2 3
9 10