OIDC client_secret elasticsearch-keystore

Victor_Sartori · March 11, 2020, 8:48pm

I'm trying to use OIDC auth on ES.
But If you follow the docs https://www.elastic.co/guide/en/elasticsearch/reference/7.6/oidc-guide-authentication.html, has a step to add manually the client secret on elasticsearch-keystore.

My question is: How Can I add this secret? using a init container? This keystore can be shared?
Or this is a bug and we can't use this scenario in ECK?

Anya_Sabo · March 11, 2020, 9:00pm

There are docs here: https://www.elastic.co/guide/en/cloud-on-k8s/1.0/k8s-es-secure-settings.html on adding items to the keystore with ECK. If you have any questions or issues with it let us know.

Victor_Sartori · March 11, 2020, 9:06pm

Hi Anya!

Thanks for answer very fast
After posting this question, I found an similar issue, and I saw your answer with this

Topic		Replies	Views
Adding elasticsearch-keystore with docker/kubernetes Elasticsearch docker	1	1681	July 17, 2020
Can't find keystore data? Elastic Cloud on Kubernetes (ECK)	4	1442	November 4, 2022
Cannot configure Open ID Connect - cant store key in elastic keystore for persistent usage Elasticsearch elastic-stack-security , docker	4	916	November 3, 2020
Gcs-repository-creation-issue for elasticsearch on gke Elastic Cloud on Kubernetes (ECK)	13	1062	October 29, 2019
Removing elastic-user Secret from K8s Secrets Elastic Cloud on Kubernetes (ECK)	3	479	November 22, 2021

OIDC client_secret elasticsearch-keystore

Related topics