Basic license, users, and https

hi

i have a local (my personal use only) elasticsearch/kibana instance insalled and setup in Jan 2024 on my Mac.

All worked fine, until it didn't. My basic license has expired. This was expected. I did not anticpate I was using anything other than basic features, like https and authentication. I have disabled security in elasticsearch via:

xpack.security.enabled: false

but it seems this disables all "security" completely, inclduding basic stuff like https and user (e.g. the elastic user) authentication?

In the table at

it suggests even basdic license should support some of these functions.

I am missing or misunderstanding something somewhere - what is it?

versions is 8.11.3 for elasticsearch

Thanks
KM

By setting this:

xpack.security.enabled: false

You are asking Elasticsearch to disable any security...
Including login / password.

That's not related to any license. See Security settings in Elasticsearch | Elasticsearch Guide [8.12] | Elastic

If set to false , security features are disabled, which is not recommended. It also affects all Kibana instances that connect to this Elasticsearch instance; you do not need to disable security features in those kibana.yml files. For more information about disabling security features in specific Kibana instances, see Kibana security settings.

The Basic license provides support for basic security and does not expire. I suspect you have activated a trial license, which does expire. I think you can enable the Basic license through an API call, and that should allow you to reenable security as long as you are not using any features not included in the free Basic license.

thanks David and Christian for replies

% curl -sk --user ${ELKUS}:${ELKPW} -XGET https://localhost:9200/_cat/indices | python3 -m json.tool
{
"error": {
"root_cause": [
{
"type": "security_exception",
"reason": "current license is non-compliant for [security]",
"license.expired.feature": "security"
}
],
"type": "security_exception",
"reason": "current license is non-compliant for [security]",
"license.expired.feature": "security"
},
"status": 403
}

is what i saw.

But the "trial" license was correct, I've now POST-ed /_license/start_basic and I'm good again.