Hello —
I've got Elasticsearch and Kibana running with docker-compose with no issues. In my kibana.yml file, my password is exposed as such:
server.name: kibana
server.host: "0"
elasticsearch.hosts: [ "http://elasticsearch:9200" ]
elasticsearch.username: kibana
elasticsearch.password: password
When trying to create a kibana-keystore to protect the password value, i get the following error:
bash: bin/kibana-keystore: No such file or directory
I am following this documentation to create the kibana-keystore:
https://www.elastic.co/guide/en/kibana/6.8/secure-settings.html
I've also tried storing the password in elasticsearch-keystore but could not reference it and it caused my elasticsearch cluster to fail. I assume this is the reason why:
Only some settings are designed to be read from the keystore. However, there is no validation to block unsupported settings from the keystore and they can cause Elasticsearch to fail to start.
Any insights on how i can protect the password in kibana.yml would be much appreciated. Thanks!