Access Elasticsearch with HTTPs and HTTP

TomTom · August 11, 2023, 5:57pm

I configured my Elasticsearch server to be secure, using a proprietary certificate.
Similar to the configuration below:

# security settings
xpack.security.enabled: true
xpack.security.autoconfiguration.enabled: false
# transport ssl
xpack.security.transport.ssl.enabled: true
xpack.security.transport.ssl.key: certs/es01/es01.key
xpack.security.transport.ssl.certificate: certs/es01/es01.crt
xpack.security.transport.ssl.certificate_authorities: certs/ca/ca.crt
## http ssl
xpack.security.http.ssl.enabled: true
xpack.security.http.ssl.key: certs/es01/es01.key
xpack.security.http.ssl.certificate: certs/es01/es01.crt
xpack.security.http.ssl.certificate_authorities: certs/ca/ca.crt

It turns out that with these settings, even accessing the same network I always have to use HTTPs.
Is it possible to allow access to the Elastic server with HTTP and HTTPs?

leandrojmp · August 11, 2023, 7:53pm

It is not possible, elasticsearch will listen on HTTP or HTTPS.

If you want to redirect HTTP traffic to HTTPS you would need to put something like a LB in front of Elasticsearch to redirect the HTTP traffic.

system · September 8, 2023, 7:53pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Cannot use https on elasticsearch server Elasticsearch elastic-stack-security	2	260	April 6, 2023
Secure connection on HTTP layer Elasticsearch elastic-stack-security	14	7117	September 3, 2019
Setting up Xpack security - stuck Elasticsearch elastic-stack-security	2	474	April 14, 2020
Trouble enabling SSL for elastic search Elasticsearch	12	5325	January 10, 2017
Only expose HTTPS Elasticsearch	6	859	November 18, 2018

Access Elasticsearch with HTTPs and HTTP

Related topics