I've just installed shield plugin (2.0) according to the documentation:
-stopped all nodes
-installed shield on all nodes
-started all nodes
-added an admin user using esusers
I also verified it as per documentation:
[2015-12-11 03:07:45,133][INFO ][http ] [XXXX] Using [org.elasticsearch.http.netty.NettyHttpServerTransport] as http transport, overridden by [shield] [2015-12-11 03:07:45,358][INFO ][transport ] [XXXX] Using [org.elasticsearch.shield.transport.ShieldServerTransportService] as transport service, overridden by [shield] [2015-12-11 03:07:45,358][INFO ][transport ] [XXXX] Using [org.elasticsearch.shield.transport.netty.ShieldNettyTransport] as transport, overridden by [shield]
However, the cluster is still fully open, I can still send requests without the need for username and password. Logstash is also sending data to Elasticsearch without authentication! What am I missing here?