I'm looking to use Centralized Pipeline Management in my Logstash deployments with PKI authentication to Elasticsearch. Here is a snippet from my Logstash environment configuration
xpack.management.enabled: "true"
xpack.management.elasticsearch.url: "${ELASTICSEARCH_HOST}:${ELASTICSEARCH_PORT}"
xpack.management.pipeline.id: ['ID']
xpack.management.elasticsearch.ssl.ca: "${ELASTICSEARCH_CA_FILE}"
xpack.management.elasticsearch.ssl.keystore.path: "${LOGSTASH_KEYSTORE}"
xpack.management.elasticsearch.ssl.keystore.password: "${LOGSTASH_KEYSTORE_PASSWORD_FILE}"
At runtime of Logstash, I am receiving the following error:
[2019-05-24T12:16:51,574][FATAL][logstash.runner ] An unexpected error occurred! {:error=>#<ArgumentError: You must set the password using the "xpack.management.elasticsearch.password" in logstas
h.yml>, :backtrace=>["/usr/share/logstash/x-pack/lib/config_management/elasticsearch_source.rb:39:in `initialize'", "/usr/share/logstash/x-pack/lib/config_management/hooks.rb:41:in `after_bootstrap_checks
'", "org/logstash/execution/EventDispatcherExt.java:71:in `execute'", "/usr/share/logstash/logstash-core/lib/logstash/runner.rb:304:in `execute'", "/usr/share/logstash/vendor/bundle/jruby/2.5.0/gems/clamp
-0.6.5/lib/clamp/command.rb:67:in `run'", "/usr/share/logstash/logstash-core/lib/logstash/runner.rb:237:in `run'", "/usr/share/logstash/vendor/bundle/jruby/2.5.0/gems/clamp-0.6.5/lib/clamp/command.rb:132:
in `run'", "/usr/share/logstash/lib/bootstrap/environment.rb:73:in `<main>'"]}
Is PKI authentication permitted for Centralized Pipeline Management? The guard doesn't outline why this is not permitted and there is the option to set the keystore in the configuration per the Logstash documentation. Is this to prevent users to use PKI authentication since there is an open issue to switch over to a Kibana API and Kibana does not support PKI authentication?