I understand that in order to enable X-Pack-Security we have to have a valid license ( which in our case we have GOLD ), and also I know we have to configure TLS for inter-node communication, I understand this is obviously your recommendation for enhanced security, however, we would like to know if is it possible to enable LDAP WITHOUT having to enable TLS security on all cluster nodes? we would like to enable TLS certificates on the Kibana node ONLY, and use LDAP for authentication.
No, that is not possible. If you wish to turn on security, then you need to enable TLS for internode communication, there is no way to avoid that.
It is more than that - we cannot provide any security guarantees on the cluster unless there are constraints on cluster membership. The way we provide those contraints is via TLS.
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.