Recommended way of storing credentials in Beats configuration file?

curiousmind · May 31, 2020, 4:19pm

What is the recommended way of storing the credentials like username and passwords in the beats configuration file?
Our deployment is via terraform and ansible, which essentially stores the credentials in the environment.
Is this a good practice?
if not, what is the recommended practice?
Would like to get a pretty good picture on this as we are going to deal with healthcare client for this deployment.
Thanks in advance

Andre_Letterer · May 31, 2020, 9:23pm

Now, the best solution will be to stick to using keystore content especially for passwords.

For something like
cat /file/containing/setting/value | filebeat keystore add ES_PWD --stdin --force
and then use it in the yml file:
output.elasticsearch.password: "${ES_PWD}"

How to use that in ansible, I don't want to reinvent the wheel.
Here you should find a working example, you just need to translate it from kibana to filebeat command style:

The similar should be possible with a remote exec provisioner:

system · June 28, 2020, 9:23pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Filebeat best way to secure credentials? Beats	18	2909	October 19, 2016
Elastic Cloud Keystore Beats elastic-stack-security	6	938	August 24, 2019
Centralized beats configuration Beats	5	1022	January 12, 2019
What all credentials should be configured in metricbeat, and how, while working with secure elasticsearch having https and built in user roles? Beats elastic-stack-security , metricbeat	1	265	December 17, 2020
Does Filebeat have to use 'beats_system' or 'elastic' to connect to ElasticSearch? Beats filebeat	2	620	December 13, 2020

Recommended way of storing credentials in Beats configuration file?

Related topics