Hi, i have a kubernetes cluster and im trying to configure elasticsearch with xpack.security.enabled
through the helm template
I have the same config from the documentation: https://github.com/elastic/helm-charts/blob/7.9/elasticsearch/examples/security/security.yml
The unique difference is my certificates are generated by cert-manager with letsencrypt which generated an tls.key
and tls.crt
this are my values.yaml
esConfig:
elasticsearch.yml: |
xpack.security.enabled: true
xpack.security.transport.ssl.enabled: true
xpack.security.transport.ssl.verification_mode: certificate
xpack.security.transport.ssl.key: /usr/share/elasticsearch/config/certs/tls.key
xpack.security.transport.ssl.certificate: /usr/share/elasticsearch/config/certs/tls.crt
xpack.security.http.ssl.enabled: true
xpack.security.http.ssl.key: /usr/share/elasticsearch/config/certs/tls.key
xpack.security.http.ssl.certificate: /usr/share/elasticsearch/config/certs/tls.crt
and this the log
{"type": "server", "timestamp": "2020-08-26T17:46:21,456Z", "level": "ERROR", "component": "o.e.x.s.a.e.NativeUsersStore", "cluster.name": "elasticsearch", "node.name": "elasticsearch-master-0", "message": "security index is unavailable. short circuiting retrieval of user [userelastic]", "cluster.uuid": "huhZtorGTEOhX3gO41sNGg", "node.id": "cza-R9qVQYmqCs8s18mqHw" }