Management expects password after disabling security in X-Pack 6.0.0-beta2

John_Sobanski · September 7, 2017, 6:32pm

Expected Behavior: Disabling X-Pack security on Elasticsearch obviates the need for a Logstash management password
Observed Behavior: Logstash complains that it needs a management password
I installed X-Pack on Elasticsearch, Kibana and Logstash (All running 6.0.0-beta2).
My elasticsearch.yml includes the following line:

 xpack.security.enabled: false

According to the X-Pack documentation, I do not need a password if I disable security:

xpack.management.elasticsearch.username and xpack.management.elasticsearch.password
If your Elasticsearch is protected with basic authentication, these settings provide the username and password that the Logstash instance uses to authenticate for accessing the configuration data. The password for the elastic user is whatever password you specified when you installed X-Pack and set up authentication.

My Elasticsearch does not use basic authentication, so I would assume I do not need to set a password here.

John_Sobanski · September 7, 2017, 6:38pm

The log message follows

[2017-09-07T18:36:35,335][FATAL][logstash.runner          ] An unexpected error occurred! {:error=>#<ArgumentError: Setting "xpack.security.enabled" hasn't been registered>, :backtrace=>["/usr/share/logstash/logstash-core/lib/logstash/settings.rb:32:in `get_setting'", "/usr/share/logstash/logstash-core/lib/logstash/settings.rb:65:in `set_value'", "/usr/share/logstash/logstash-core/lib/logstash/settings.rb:84:in `block in merge'", "org/jruby/RubyHash.java:1343:in `each'", "/usr/share/logstash/logstash-core/lib/logstash/settings.rb:84:in `merge'", "/usr/share/logstash/logstash-core/lib/logstash/settings.rb:133:in `validate_all'", "/usr/share/logstash/logstash-core/lib/logstash/runner.rb:277:in `execute'", "/usr/share/logstash/vendor/bundle/jruby/2.3.0/gems/clamp-0.6.5/lib/clamp/command.rb:67:in `run'", "/usr/share/logstash/logstash-core/lib/logstash/runner.rb:232:in `run'", "/usr/share/logstash/vendor/bundle/jruby/2.3.0/gems/clamp-0.6.5/lib/clamp/command.rb:132:in `run'", "/usr/share/logstash/lib/bootstrap/environment.rb:71:in `<main>'"]}

TimV · September 8, 2017, 7:15am

The documentation is a bit unclear on this.

I believe you need to set xpack.management.elasticsearch.username to a blank value.
It defaults to logstash_system so if you don't set a password it will act as if you have specified a user but no password.

system · October 6, 2017, 7:15am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Catch 22 with creating passwords Elasticsearch elastic-stack-security	23	725	May 4, 2021
X-pack security for elastic search Elasticsearch	5	421	July 25, 2018
Logstash stopped processing logs after enabling minimal security Logstash	5	259	April 6, 2023
Kibana login username & password Kibana	16	35906	January 12, 2017
Default username and password for Elasticsearch 7.15 Elasticsearch elastic-stack-security	4	16953	November 18, 2021

Management expects password after disabling security in X-Pack 6.0.0-beta2

Related Topics