Enable xpack authentication without TLS with GOLD license


In our project we have a GOLD elastic license, but in order to put it into elastic cluster it says that we need to enable TLS or disable security (setting xpack.security.enabled: false).

There is a way to use xpack authentication without TLS? Or at least a way to avoid ssl calls from clients? I read this documentation: https://www.elastic.co/guide/en/elasticsearch/reference/6.2/separating-node-client-traffic.html but I can't do it work...


Hi José

TLS for the transport layer is a requirement after 6.0 for enabling X-Pack security. However, if for some reason you want your clients to communicate and authenticate to your cluster over plaintext HTTP, you can keep TLS on the http layer disabled (although this is not considered best practice)

See this for enabling TLS on transport layer only.

Does this satisfy your use case?

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.