Situation: You are using X-Pack Security and you lost/forgot the "elastic" superuser password.
Don't panic!
You can workaround this problem by adding a temporary superuser user:
- Provision a new coordinating-only node with File Realm enabled.
- Add a new temporary superuser user:
$ bin/x-pack/users useradd tempuser -r superuser
- Start the temporary node and wait until it successfully joins the cluster.
- Reset the "elastic" user password (using the new tempuser):
$ curl -XPUT -u tempuser:<password> https://localhost:9200/_xpack/security/user/elastic/_password -H "Content-Type: application/json" -d '
{
"password": "MyN3wC00lP4ssw0rd"
}'
- Check that is working with:
$ curl -u elastic:MyN3wC00lP4ssw0rd https://localhost:9200/
- Stop and scrap away the temporary node. This is very important because this node contains the temporary user in it's local file realm.