ELK APM Security (RUM agents)

Shalinicts · March 21, 2023, 11:07am

Hi Team,
Hi Team,

APM server - is implemented in a Linux server.
APM agent - RUM.JS
AWS Loadbalancer URL (https:x.x.x.x) is implemented between APM agents and APM server.
APM agent send data to this loadbalancing URL which inturn send data to APM and further to Elastic server.
Since we are using RUM with anonymous authentication, how can we make sure we have a secure connection with agents and APM server.
Since the browser based application will be accessed by customers all over internet and the information gets into APM server we need some security layer placed .
Can anyone guide on this please.

simitt · March 21, 2023, 11:50am

The guide about anonymous auth refers to how you can configure the apm server to allow incoming requests without auth token from configured apm agents, while in general using auth via api keys or secret token for any other apm agents.

Shalinicts · March 21, 2023, 12:31pm

Thanks Silvia .
I think in 7.17 version of Elastic with RUM JS as APM agent we dont have option to configure any security with anonymous authentication.

simitt · March 21, 2023, 12:57pm

Anonymous auth was also supported in 7.17, just nested under a different key; check out 7.17-anonymous-auth for more details.

Shalinicts · March 21, 2023, 1:27pm

Thanks

Topic		Replies	Views
RUM support in Elastic APM rum	4	164	September 19, 2024
Authentication of RUM event post from browser APM rum , server	4	718	September 23, 2019
Elastic Agent RUM - Cryptography Elastic Agent elastic-stack-monitoring	5	303	December 12, 2023
Is APM Server (port 8200) secure by default? How to make it secure? APM server	3	3004	January 28, 2020
Elastic APM RUM architecture APM rum , server	3	766	December 9, 2020

ELK APM Security (RUM agents)

Related topics