Management expects password after disabling security in X-Pack 6.0.0-beta2

John_Sobanski · September 7, 2017, 6:32pm

Expected Behavior: Disabling X-Pack security on Elasticsearch obviates the need for a Logstash management password
Observed Behavior: Logstash complains that it needs a management password
I installed X-Pack on Elasticsearch, Kibana and Logstash (All running 6.0.0-beta2).
My elasticsearch.yml includes the following line:

 xpack.security.enabled: false

According to the X-Pack documentation, I do not need a password if I disable security:

xpack.management.elasticsearch.username and xpack.management.elasticsearch.password
If your Elasticsearch is protected with basic authentication, these settings provide the username and password that the Logstash instance uses to authenticate for accessing the configuration data. The password for the elastic user is whatever password you specified when you installed X-Pack and set up authentication.

My Elasticsearch does not use basic authentication, so I would assume I do not need to set a password here.

John_Sobanski · September 7, 2017, 6:38pm

The log message follows

[2017-09-07T18:36:35,335][FATAL][logstash.runner          ] An unexpected error occurred! {:error=>#<ArgumentError: Setting "xpack.security.enabled" hasn't been registered>, :backtrace=>["/usr/share/logstash/logstash-core/lib/logstash/settings.rb:32:in `get_setting'", "/usr/share/logstash/logstash-core/lib/logstash/settings.rb:65:in `set_value'", "/usr/share/logstash/logstash-core/lib/logstash/settings.rb:84:in `block in merge'", "org/jruby/RubyHash.java:1343:in `each'", "/usr/share/logstash/logstash-core/lib/logstash/settings.rb:84:in `merge'", "/usr/share/logstash/logstash-core/lib/logstash/settings.rb:133:in `validate_all'", "/usr/share/logstash/logstash-core/lib/logstash/runner.rb:277:in `execute'", "/usr/share/logstash/vendor/bundle/jruby/2.3.0/gems/clamp-0.6.5/lib/clamp/command.rb:67:in `run'", "/usr/share/logstash/logstash-core/lib/logstash/runner.rb:232:in `run'", "/usr/share/logstash/vendor/bundle/jruby/2.3.0/gems/clamp-0.6.5/lib/clamp/command.rb:132:in `run'", "/usr/share/logstash/lib/bootstrap/environment.rb:71:in `<main>'"]}

TimV · September 8, 2017, 7:15am

The documentation is a bit unclear on this.

I believe you need to set xpack.management.elasticsearch.username to a blank value.
It defaults to logstash_system so if you don't set a password it will act as if you have specified a user but no password.

system · October 6, 2017, 7:15am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
X-Pack logstash management - credentials should not be mandatory Logstash	1	432	December 13, 2017
Logstash missing from monitoring after 5.6.2 upgrade Logstash	6	1008	November 6, 2017
Elastic Search can't setup password for Kibana Elasticsearch elastic-stack-security	14	4685	September 11, 2019
X-pack on logstash Logstash	5	944	February 2, 2018
Elasticsearch x-pack-security enable on cluster (SOLVED) Elasticsearch	2	355	April 8, 2019

Management expects password after disabling security in X-Pack 6.0.0-beta2

Related topics