I am trying to understand if the FIPS 140-2 compliant mode offered by Elasticsearch is applicable when Elasticsearch is used as an Amazon Opensearch service.
In my specific case, Elasticsearch is not installed on-premise or in a similar environment, but is used as an Amazon service. As a result, I do not have direct access to the Elasticsearch machines to verify or modify settings.
Elasticsearch offers a FIPS 140-2 compliant mode and can thus run in a FIPS 140-2 configured JVM in order to guarantee security principles. However, it is unclear whether this mode is available or can be enabled when Elasticsearch is used as an Amazon Opensearch service.
Could you provide further details or clarifications on this?
OpenSearch/OpenDistro are AWS run products and differ from the original Elasticsearch and Kibana products that Elastic builds and maintains. You may need to contact them directly for further assistance. See What is OpenSearch and the OpenSearch Dashboard? | Elastic for more details.
(This is an automated response from your friendly Elastic bot. Please report this post if you have any suggestions or concerns )
Cloud by elastic is one way to have access to all features, all managed by us. Think about what is there yet like Vector Search, Security, Monitoring, Reporting, ES|QL, Canvas, Maps UI, Alerting and built-in solutions named Observability, Security and what is coming next ...
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant
logo are trademarks of the
Apache Software Foundation
in the United States and/or other countries.