Best Practice for server.ssl.key Permissions in Kibana?

anpama · April 2, 2025, 5:49pm

Hi everyone,

I'm setting up SSL for Kibana (via server.ssl.key in kibana.yml) to encrypt browser traffic. My private key file has 600 permissions, and Kibana can’t read it unless I run it as root.

However, both the docs and the program warn:
“Kibana should not be run as root. Use --allow-root to continue.”

What are the best practices in this case?

Should I loosen the key file's permissions?
Should I use --allow-root?
Anything else I should consider?

Thanks!

stephenb · April 2, 2025, 9:42pm

Hi @anpama

Topic		Replies	Views
Setting up SSL in Kibana - Permissions Error Kibana	3	5832	October 17, 2017
How to use SSL LetsEncrypt in Kibana? Kibana elastic-stack-security	2	2366	December 17, 2020
Kibana 7.5.1 Unable to use Kibana Keystore due to Permissions Problem Kibana elastic-stack-security	6	3592	March 30, 2020
Can Kibana use the encrypted private key for SSL? Kibana	7	831	June 7, 2018
Configuring Kibana with SSL; how to define passphrase for the private key? Kibana	4	4165	July 6, 2017

Best Practice for server.ssl.key Permissions in Kibana?

Related topics