SAML without Elasticsearch SSL (using Traefik as a reverse proxy)

rushil791 · June 19, 2023, 4:37pm

Hi there,

I want to be able to use SAML with my Elasticsearch-Kibana setup in Docker, but I need to be able to use my organisation's CA cert. I do not have access to the CA's private key, so I can't use the certutil to generate certs, but I am using Traefik on the outer level to encrypt HTTP data and this works fine.

I was wondering whether it was possible to either enable TLS without the CA private key, or enable SAML without TLS (as the HTTP data is already encrypted as it goes through Traefik, fulfilling the SAML requirement). Is this a hard Elasticsearch requirement?

Thank you!

Alexis_Roberson · June 23, 2023, 5:23pm

What version of Elastic are you using?

rushil791 · June 23, 2023, 7:03pm

Hi Alexis,

We're running 8.7.0.

rushil791 · July 5, 2023, 10:46am

bump (again)

leandrojmp · July 5, 2023, 12:50pm

Have you opened a ticket with support already? This forum has no SLA, but the support ticket has an SLA and can help you faster.

Since you are using SAML you must have a paid licence, so you have access to Elastic support.

system · August 2, 2023, 12:50pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Not an SSL/TLS record when Enable SSL/TLS for HTTP Elasticsearch elastic-stack-security	8	8860	November 4, 2019
Https:9200 without user/password and certificate Elasticsearch	6	141	June 14, 2024
Using ElasticSerach 8 via Docker without certificate Elasticsearch docker	2	8588	May 28, 2022
Unable to parse private key for saml encryption Elasticsearch elastic-stack-security	4	1757	June 25, 2019
Dockerizing enterprise search Elastic Search docker , elastic-app-search	2	359	May 19, 2023

SAML without Elasticsearch SSL (using Traefik as a reverse proxy)

Related Topics