Microsoft recommendations to improve security and resilience in the elasticsearch service

sairinraychoudhury · September 18, 2024, 10:09pm

Hi Everyone,

Needed advice from community members. We have deployed elasticsearch 8.5.1 using helm in Microsoft Azure Kubernetes Service (AKS). Also during an assessment of our platform towards improved security & resilience angle received below recommendations from Microsoft experts to be implemented.

Privileged containers should be avoided.
The root access inside the service container should be avoided.

We are not sure if above actions when implemented will have an impact on elasticsearch since we used default elasticsearch configs which are in helm chart for elasticsearch.

Could anyone from the community please help or guide us on below queries?

Have you tried implementing custom configs apart from default configs provided?
Do you have a view of the impact by any means if we go ahead and implement this?
Are there any other general recommendation towards achieving this?

Carlos_D · September 19, 2024, 8:13am

From Elasticsearch to Elastic Cloud on Kubernetes (ECK)

Carlos_D · September 19, 2024, 8:13am

Hi @sairinraychoudhury !

Have you considered using Elastic Cloud on Kubernetes?

Topic		Replies	Views
Azure Kubernetes Service - Elasticsearch Elasticsearch docker	3	886	January 29, 2019
Need to upgrade the elasticsearch from 8.5 to 8.15 Elastic Cloud on Kubernetes (ECK)	1	23	October 14, 2024
Elasticsearch 7.17.7 ReadOnly Root FileSystem/Privileged Container Elasticsearch docker	1	364	December 19, 2022
Not able to create elasticsearch on Azure aks Elastic Cloud on Kubernetes (ECK) docker	3	814	May 9, 2022
Deploy elasticsearch role based security using helm charts Elasticsearch	8	2941	July 8, 2020

Microsoft recommendations to improve security and resilience in the elasticsearch service

Related topics