Reputation: 879
In Elasticsearch where to generate keystore and add authentication in readonlyrest plugin?
I am trying to add password authentication in my elasticsearch cluster using readonlyrest plugin. I installed the plugin successfully now i am trying to configure my configuration file(.yml file) but there In case 0 they are using a keystore see below
http.type: ssl_netty4
readonlyrest:
enable: true
ssl:
enable: true
keystore_file: "/elasticsearch/plugins/readonlyrest/keystore.jks"
keystore_pass: readonlyrest
key_pass: readonlyrest
Can anyone please tell me from where i can generate this keystore and also where is the username and password authentication parameters set in this plugin.
Upvotes: 1
Views: 1588
Answers (1)
Reputation: 6188
You can use Letsencrypt to generate a valid SSL certificate for free.
Use Letsencrypt's own tool called certbot
A Letsencrypt certificate works just fine in ReadonlyREST, but first you have to convert it into a JKS keystore.
Obtaining a JKS keystore from Letsencrypt certs is a common procedure: you would do the same if you want to use Letsencrypt with Tomcat. A very common, googleable use case.
PS: I will progressively release some detailed documentation in the following weeks on the official website.
Upvotes: 2
Related Questions
- How to setup password for elasticsearch users?
- How to add basic user/pass authentication to elastic.yaml
- Add authentication in elasticsearch high level client for Java
- How to perform token authentication in elasticsearch?
- Authentication in Elasticsearch
- how to password protect Elastic search
- Readonlyrest and Kibana Permission Configuration
- Installing readonlyrest plugin for elasticsearch getting error FileNotFoundException
- Azure ElasticSearch config file and how to add security
- How to secure Elasticsearch