I would like to secure communication between my client app and elasticsearch. I would also like to do the same for elasticsearch's inter-node communication.
Question: Do I need to purchase elasticsearch's support subscription? The communication between my client app and elasticsearch is done using elasticsearch REST client.
It would be the same between client application and elasticsearch, yes.
The basic subscription doesn't support a lot of features, but you might want to take a look at https://cloud.elastic.co which is great - you have access to a Platinum license (with graph, alerts, etc.) for clusters under 64GB RAM.
Right... we will be evaluating elastic cloud but at present I am not there yet. Thus for my self-hosted elasticsearch cluster, do I need the platinum support subscription to enable encryption everywhere? (between nodes and between client and the cluster itself)
I am using ES REST client for communication between my client app and ES cluster, I believe, I will need the platinum subscription because it is the one that provides that support (as far as I understand).
Both Gold and Platinum offers encryption between Elasticsearch nodes as well as between clients and the cluster. This is covered under Native authentication, encrypted communications in the feature matrix on the subscriptions page.
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant
logo are trademarks of the
Apache Software Foundation
in the United States and/or other countries.