Hello Guys,
as i wanted to implement security in my Cluster, i followed along This Guide - an it all went well until
Step 6. Set the passwords for all built-in users.
When i try to execute the command:
bin/elasticsearch-setup-passwords interactive
I get the following Error:
Failed to authenticate user 'elastic' against http://X.X.X.X:9200/_security/_authenticate?pretty
Possible causes include:
* The password for the 'elastic' user has already been changed on this cluster
* Your elasticsearch node is running against a different keystore
This tool used the keystore at /etc/elasticsearch/elasticsearch.keystore
ERROR: Failed to verify bootstrap password
I know that the bootstrap password was set by my predecessor - i also have access to it - but still i don't know what i have to do here..
When i look into the elasticsearch Logs i see the following line:
[2020-03-20T12:49:02,575][INFO ][o.e.x.s.a.AuthenticationService] [Hostname] Authentication of [elastic] was terminated by realm [reserved] - failed to authenticate user [elastic]
The only configuration i have in my elasticsearch.yml file regarding xpack are the following:
bin/elasticsearch-setup-passwords is a convenient CLI tool to assist you with setting the password for the built in users. If you have changed the bootstrap.password then you can't use the tool, but you can very well use the Change Password API while authenticating as elastic with the password that you have to set the password for the rest of the built-in users, and potential change the password for the elastic user itself.
Hello ikakavas!
Thanks for the fast reply
My problem is that i'm in a testing environment, so there's no "Active" Kibana-WebInterface - can i do the API Password Changes via CLI? Or is that a problem?
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant
logo are trademarks of the
Apache Software Foundation
in the United States and/or other countries.