Security error in Elasticsearch after X-Pack install

cdnnhicks · August 24, 2017, 5:43pm

Hi,
I just set up an ELK version 5.5.2 server that was successfully receiving winlogbeat and syslog messages.

I just installed XPack and now I don't see any of my logs in Kibana. When I try to get my cluster health with "curl -XGET 'localhost:9200/_xpack/security/user?pretty'", I get an error

""error" : {
"root_cause" : [
{
"type" : "security_exception",
"reason" : "missing authentication token for REST request [/_xpack/security/user?pretty]",

I've reset the default password for the elastic, kibana and logstash_system users. I've updated the kibana.yml file with the new kibana password. I've also created a new user called support.

I think this has something to do with the fact that all my requests need to be associated with a user, but I'm not sure how to get that configured. I think I've set everything up properly from the documentation.

Any help would be hot.

jasontedor · August 25, 2017, 1:38am

You need to send basic authentication via curl using -u <username>:<password>.

zqc0512 · August 25, 2017, 2:53am

kibana need add user add passowrd connect to es cluster in kibana.yml configure file

system · September 22, 2017, 2:53am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Seeing security exceptions after installing X-Pack Elasticsearch	7	515	June 20, 2018
Issue with Installing X-Pack on ELK - Security Exception Error Elasticsearch	6	1326	February 8, 2018
Authentication issues while xpack security enabling - Elasticsearch version 7.7 Elasticsearch elastic-stack-security	7	1095	June 18, 2020
If I enable xpack , Elasticsearch stops working and my license won't work Elasticsearch elastic-stack-security	10	2477	October 22, 2020
Elastic Search can't setup password for Kibana Elasticsearch elastic-stack-security	14	4674	September 11, 2019

Security error in Elasticsearch after X-Pack install

Related topics