Access Elasticsearch with HTTPs and HTTP

TomTom · August 11, 2023, 5:57pm

I configured my Elasticsearch server to be secure, using a proprietary certificate.
Similar to the configuration below:

# security settings
xpack.security.enabled: true
xpack.security.autoconfiguration.enabled: false
# transport ssl
xpack.security.transport.ssl.enabled: true
xpack.security.transport.ssl.key: certs/es01/es01.key
xpack.security.transport.ssl.certificate: certs/es01/es01.crt
xpack.security.transport.ssl.certificate_authorities: certs/ca/ca.crt
## http ssl
xpack.security.http.ssl.enabled: true
xpack.security.http.ssl.key: certs/es01/es01.key
xpack.security.http.ssl.certificate: certs/es01/es01.crt
xpack.security.http.ssl.certificate_authorities: certs/ca/ca.crt

It turns out that with these settings, even accessing the same network I always have to use HTTPs.
Is it possible to allow access to the Elastic server with HTTP and HTTPs?

leandrojmp · August 11, 2023, 7:53pm

It is not possible, elasticsearch will listen on HTTP or HTTPS.

If you want to redirect HTTP traffic to HTTPS you would need to put something like a LB in front of Elasticsearch to redirect the HTTP traffic.

system · September 8, 2023, 7:53pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Secure connection on HTTP layer Elasticsearch elastic-stack-security	14	7040	September 3, 2019
HTTPS config for Elasticsearch Elasticsearch elastic-stack-security , language-clients	13	177	August 18, 2024
Setting xpack.security.enabled = true Elasticsearch elastic-stack-security	8	25489	June 29, 2019
Let's encrypt Elasticsearch elastic-stack-security	2	59	August 13, 2024
No subject alternative names matching IP address 192.168.2.121 found Elasticsearch	0	295	May 8, 2024

Access Elasticsearch with HTTPs and HTTP

Related Topics