Elasticsearch-7.8.0 user authentication implementation

Hello There,

I am using elasticsearch 7.8.0, I want to implement the user authentication . is it possible to implement only user authentication without SSL enabled ( I don't want to enable ssl transport layer) ?

Yes, you can :

1- Add xpack.security.enabled: true to elasticsearch.yml
2- Start your node (or cluster)
3- Use bin/elasticsearch-setup-passwords interactive|auto to add built-in users

@ylasri Thanks for quick response, I have done what you suggested But still I am getting error

[2020-07-16T13:18:56,036][INFO ][o.e.n.Node               ] [elk] JVM home [/opt/elasticsearch/jdk]
[2020-07-16T13:18:56,037][INFO ][o.e.n.Node               ] [elk] JVM arguments [-Xshare:auto, -Des.networkaddress.cache.ttl=60, -Des.networkaddress.cache.negative.ttl=10, -XX:+AlwaysPreTouch, -Xss1m, -Djava.awt.headless=true, -Dfile.encoding=UTF-8, -Djna.nosys=true, -XX:-OmitStackTraceInFastThrow, -XX:+ShowCodeDetailsInExceptionMessages, -Dio.netty.noUnsafe=true, -Dio.netty.noKeySetOptimization=true, -Dio.netty.recycler.maxCapacityPerThread=0, -Dio.netty.allocator.numDirectArenas=0, -Dlog4j.shutdownHookEnabled=false, -Dlog4j2.disable.jmx=true, -Djava.locale.providers=SPI,COMPAT, -Xms1g, -Xmx1g, -XX:+UseG1GC, -XX:G1ReservePercent=25, -XX:InitiatingHeapOccupancyPercent=30, -Djava.io.tmpdir=/tmp/elasticsearch-6671807583969167959, -XX:+HeapDumpOnOutOfMemoryError, -XX:HeapDumpPath=data, -XX:ErrorFile=logs/hs_err_pid%p.log, -Xlog:gc*,gc+age=trace,safepoint:file=logs/gc.log:utctime,pid,tags:filecount=32,filesize=64m, -XX:MaxDirectMemorySize=536870912, -Des.path.home=/opt/elasticsearch, -Des.path.conf=/etc/elasticsearch, -Des.distribution.flavor=default, -Des.distribution.type=tar, -Des.bundled_jdk=true]
[2020-07-16T13:18:58,380][INFO ][o.e.p.PluginsService     ] [elk] loaded module [aggs-matrix-stats]
[2020-07-16T13:18:58,381][INFO ][o.e.p.PluginsService     ] [elk] loaded module [analysis-common]
[2020-07-16T13:18:58,381][INFO ][o.e.p.PluginsService     ] [elk] loaded module [constant-keyword]
[2020-07-16T13:18:58,381][INFO ][o.e.p.PluginsService     ] [elk] loaded module [flattened]
[2020-07-16T13:18:58,382][INFO ][o.e.p.PluginsService     ] [elk] loaded module [frozen-indices]
[2020-07-16T13:18:58,382][INFO ][o.e.p.PluginsService     ] [elk] loaded module [ingest-common]
[2020-07-16T13:18:58,382][INFO ][o.e.p.PluginsService     ] [elk] loaded module [ingest-geoip]
[2020-07-16T13:18:58,383][INFO ][o.e.p.PluginsService     ] [elk] loaded module [ingest-user-agent]
[2020-07-16T13:18:58,383][INFO ][o.e.p.PluginsService     ] [elk] loaded module [kibana]
[2020-07-16T13:18:58,383][INFO ][o.e.p.PluginsService     ] [elk] loaded module [lang-expression]
[2020-07-16T13:18:58,383][INFO ][o.e.p.PluginsService     ] [elk] loaded module [lang-mustache]
[2020-07-16T13:18:58,384][INFO ][o.e.p.PluginsService     ] [elk] loaded module [lang-painless]
[2020-07-16T13:18:58,384][INFO ][o.e.p.PluginsService     ] [elk] loaded module [mapper-extras]
[2020-07-16T13:18:58,384][INFO ][o.e.p.PluginsService     ] [elk] loaded module [parent-join]
[2020-07-16T13:18:58,384][INFO ][o.e.p.PluginsService     ] [elk] loaded module [percolator]
[2020-07-16T13:18:58,385][INFO ][o.e.p.PluginsService     ] [elk] loaded module [rank-eval]
[2020-07-16T13:18:58,385][INFO ][o.e.p.PluginsService     ] [elk] loaded module [reindex]
[2020-07-16T13:18:58,385][INFO ][o.e.p.PluginsService     ] [elk] loaded module [repository-url]
[2020-07-16T13:18:58,385][INFO ][o.e.p.PluginsService     ] [elk] loaded module [search-business-rules]
[2020-07-16T13:18:58,386][INFO ][o.e.p.PluginsService     ] [elk] loaded module [searchable-snapshots]
[2020-07-16T13:18:58,386][INFO ][o.e.p.PluginsService     ] [elk] loaded module [spatial]
[2020-07-16T13:18:58,387][INFO ][o.e.p.PluginsService     ] [elk] loaded module [tasks]
[2020-07-16T13:18:58,387][INFO ][o.e.p.PluginsService     ] [elk] loaded module [transform]
[2020-07-16T13:18:58,387][INFO ][o.e.p.PluginsService     ] [elk] loaded module [transport-netty4]
[2020-07-16T13:18:58,388][INFO ][o.e.p.PluginsService     ] [elk] loaded module [vectors]
[2020-07-16T13:18:58,388][INFO ][o.e.p.PluginsService     ] [elk] loaded module [x-pack-analytics]
[2020-07-16T13:18:58,388][INFO ][o.e.p.PluginsService     ] [elk] loaded module [x-pack-async-search]
[2020-07-16T13:18:58,388][INFO ][o.e.p.PluginsService     ] [elk] loaded module [x-pack-autoscaling]
[2020-07-16T13:18:58,388][INFO ][o.e.p.PluginsService     ] [elk] loaded module [x-pack-ccr]
[2020-07-16T13:18:58,389][INFO ][o.e.p.PluginsService     ] [elk] loaded module [x-pack-core]
[2020-07-16T13:18:58,389][INFO ][o.e.p.PluginsService     ] [elk] loaded module [x-pack-deprecation]
[2020-07-16T13:18:58,389][INFO ][o.e.p.PluginsService     ] [elk] loaded module [x-pack-enrich]
[2020-07-16T13:18:58,389][INFO ][o.e.p.PluginsService     ] [elk] loaded module [x-pack-eql]
[2020-07-16T13:18:58,390][INFO ][o.e.p.PluginsService     ] [elk] loaded module [x-pack-graph]
[2020-07-16T13:18:58,390][INFO ][o.e.p.PluginsService     ] [elk] loaded module [x-pack-identity-provider]
[2020-07-16T13:18:58,390][INFO ][o.e.p.PluginsService     ] [elk] loaded module [x-pack-ilm]
[2020-07-16T13:18:58,390][INFO ][o.e.p.PluginsService     ] [elk] loaded module [x-pack-logstash]
[2020-07-16T13:18:58,391][INFO ][o.e.p.PluginsService     ] [elk] loaded module [x-pack-ml]
[2020-07-16T13:18:58,391][INFO ][o.e.p.PluginsService     ] [elk] loaded module [x-pack-monitoring]
[2020-07-16T13:18:58,391][INFO ][o.e.p.PluginsService     ] [elk] loaded module [x-pack-ql]
[2020-07-16T13:18:58,391][INFO ][o.e.p.PluginsService     ] [elk] loaded module [x-pack-rollup]
[2020-07-16T13:18:58,391][INFO ][o.e.p.PluginsService     ] [elk] loaded module [x-pack-security]
[2020-07-16T13:18:58,392][INFO ][o.e.p.PluginsService     ] [elk] loaded module [x-pack-sql]
[2020-07-16T13:18:58,392][INFO ][o.e.p.PluginsService     ] [elk] loaded module [x-pack-voting-only-node]
[2020-07-16T13:18:58,392][INFO ][o.e.p.PluginsService     ] [elk] loaded module [x-pack-watcher]
[2020-07-16T13:18:58,393][INFO ][o.e.p.PluginsService     ] [elk] no plugins loaded
[2020-07-16T13:18:58,440][INFO ][o.e.e.NodeEnvironment    ] [elk] using [1] data paths, mounts [[/var/lib/elasticsearch (/dev/nvme1n1p2)]], net usable_space [67.5gb], net total_space [138.7gb], types [xfs]
[2020-07-16T13:18:58,441][INFO ][o.e.e.NodeEnvironment    ] [elk] heap size [1gb], compressed ordinary object pointers [true]
[2020-07-16T13:18:58,551][INFO ][o.e.n.Node               ] [elk] node name [elk], node ID [bsC-uZtQSpCEHSv9abKoPA], cluster name [elasticsearch]
[2020-07-16T13:19:02,979][INFO ][o.e.x.m.p.l.CppLogMessageHandler] [elk] [controller/1194] [Main.cc@110] controller (64 bit): Version 7.8.0 (Build 58ff6912e20047) Copyright (c) 2020 Elasticsearch BV
[2020-07-16T13:19:03,728][INFO ][o.e.d.DiscoveryModule    ] [elk] using discovery type [zen] and seed hosts providers [settings]
[2020-07-16T13:19:04,641][INFO ][o.e.n.Node               ] [elk] initialized
[2020-07-16T13:19:04,641][INFO ][o.e.n.Node               ] [elk] starting ...
[2020-07-16T13:19:04,778][INFO ][o.e.t.TransportService   ] [elk] publish_address {172.17.0.2:9300}, bound_addresses {0.0.0.0:9300}
[2020-07-16T13:19:05,069][INFO ][o.e.b.BootstrapChecks    ] [elk] bound or publishing to a non-loopback address, enforcing bootstrap checks
[2020-07-16T13:19:05,103][ERROR][o.e.b.Bootstrap          ] [elk] node validation exception
[1] bootstrap checks failed
[1]: Transport SSL must be enabled if security is enabled on a [basic] license. Please set [xpack.security.transport.ssl.enabled] to [true] or disable security by setting [xpack.security.enabled] to [false]
[2020-07-16T13:19:05,105][INFO ][o.e.n.Node               ] [elk] stopping ...
[2020-07-16T13:19:05,116][INFO ][o.e.n.Node               ] [elk] stopped
[2020-07-16T13:19:05,116][INFO ][o.e.n.Node               ] [elk] closing ...
[2020-07-16T13:19:05,131][INFO ][o.e.n.Node               ] [elk] closed
[2020-07-16T13:19:05,133][INFO ][o.e.x.m.p.NativeController] [elk] Native controller process has stopped - no new native processes can be started

Try to add discovery.type: single-node in elasticsearch.yml if your cluster is 1 node
Check it here , ES use some bootsrap checks when you try to bind to an IP adresse, it force production checks ...

@ylasri Thank you so much, It's worked . One last question.

I am using single node docker container, when I try to access elasticsearch api It'a asking user authentication, where can I find the default elastic user password?

I have passed a password as variable to elk container, but password is not working

docker run -dti -p 5044:5044 -p 8003:5601   -e ELASTIC_PASSWORD=password  elk:7.8

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.