Microsoft recommendations to improve security and resilience in the elasticsearch service

Hi Everyone,

Needed advice from community members. We have deployed elasticsearch 8.5.1 using helm in Microsoft Azure Kubernetes Service (AKS). Also during an assessment of our platform towards improved security & resilience angle received below recommendations from Microsoft experts to be implemented.

  1. Privileged containers should be avoided.
  2. The root access inside the service container should be avoided.

We are not sure if above actions when implemented will have an impact on elasticsearch since we used default elasticsearch configs which are in helm chart for elasticsearch.

Could anyone from the community please help or guide us on below queries?

  1. Have you tried implementing custom configs apart from default configs provided?
  2. Do you have a view of the impact by any means if we go ahead and implement this?
  3. Are there any other general recommendation towards achieving this?

From Elasticsearch to Elastic Cloud on Kubernetes (ECK)

Hi @sairinraychoudhury !

Have you considered using Elastic Cloud on Kubernetes?

Hi @Carlos_D ,

Thank you for suggestion, Could you please let me know how I can migrate from elasticsearch cluster to ECK and how I can get current indices at the new ECK. For info we have master, client and data nodes. I'm very new to this so have no idea how to proceed further.

Hey @sairinraychoudhury :

You could reindex from a remote cluster, or also restore from a snapshot.