Poretect plain text password in Kibana yml file

Hi experts,

Please share me way to protect hard coded sensitive data in kibana.yml

elasticsearch.username: "kibana"
elasticsearch.password: "PasswordAsPlainText"

For logstash i use keystore. so i just need use ${ES_PWD}. However, in kibana i tried reference it in yml it was not working. The system halted

Are you trying to use the keystore generated from Logstash? If so keystores are different from Logstash to Kibana.

Create a keystore using the Kibana commands.

1 Like

thanks. i tried bin/kibana-keystore create however, i am hitting below error

FATAL CLI ERROR Error: ENOENT: no such file or directory, open '/usr/share/kibana/config/kibana.keystore'

in logstash i use --path/settings. in kibana do you have any hint

How did you install kibana? tar.gz, rpm, deb ?

Per the docs here it should be putting it in path.data

Depending on how you installed you can check the directory layout it is in each of the install sections

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.