If I secure elasticsearch with HTTPS, that means that I have to secure logstash and kibana?
or I just have to change the logstash configuration, and kibana configuration to point to an HTTPS instead of HTTP
You would have to point logstash elasticsearch output to https and possibly provide cacerts. You are not required to secure the input sides.
Kibana likewise, but IMHO, securing the input side of Kibana is needed because user account info will flow.
thaks, do I need to change every output in my logstash pipelines also?
Probably, elastic should refuse http connections after security is enabled, so all have to be replaced with https.
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.