Clear text password in Elasticsearch, logstash, kibana and Beats

How we can encrypt the clear text password in different components config files? I see few doc talking about adding those setting in keystore but not very clear. Can someone guide?

Hi

See the Elasticsearch secure settings doc for Elasticsearch, the Logstash secure settings doc for logstash and the Kibana secure settings doc for Kibana as a starting point.

If this is still not clear, it would most probably help if you could add a more specific question about what exactly you are trying to do and what issues you are encountering.

@ikakavas, basically when we have xpack enabled, communication between different components within elastic stack requires credentials. e.g. communicating from logstash to elasticsearch require elastic credential.
Now, those credentials in logstash config file will be visible in clear text ( not encrypted). This is not allowed per my org security policy.
Is there anyway to not show clear text password in config files?

There is as per the links provided :slight_smile:

Thanks, This is what i was looking far. Appreciate your help

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.