Session cookies will be transmitted over insecure connections

willemdh · December 18, 2017, 2:17pm

Hello,

On my Kibana 6.1 test server I get this on kibana service restart

Dec 18 15:10:04 srvelkodv02 kibana: {"type":"log","@timestamp":"2017-12-18T14:10:04Z","tags":["security","warning"],"pid":20636,"message":"Session cookies will be transmitted over insecure connections. This is not recommended."}

kibana.yml:

server.port: 5601
server.host: "localhost"
server.name: "srvelkodv02"

xpack.security.sessionTimeout: 3600000
xpack.security.encryptionKey: "8513e214e7"
xpack.reporting.encryptionKey: "1fc9ecdac755"

Can I secure connections with the open source Kibana? if so, how? I'm using Nginx proxy atm.

Grtz

Willem

ppisljar · December 19, 2017, 1:28pm

I think you will need to configure kibana to use SSL: https://www.elastic.co/guide/en/kibana/current/production.html

system · January 16, 2018, 1:28pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
What does "A secure connection is required for log in" mean? Kibana elastic-stack-security	10	5103	March 18, 2019
Kibana http requests instead of https? i.e. without encryption Kibana	5	1504	July 6, 2017
Encryption between browser and kibana server Kibana	2	394	July 18, 2017
Kibana - SESSSION_EXPIRED right after login Kibana	7	2587	July 19, 2017
Kibana 7.13.1 Windows - kibana-encryption-keys Kibana windows	3	2396	July 10, 2021

Session cookies will be transmitted over insecure connections

Related topics