Should I be copying the `/etc/elasticsearch/service_tokens` to several elastic nodes?

learningelastic · February 22, 2023, 2:03pm

I have an elastic cluster with three nodes: n1, n2 and n3. And I have a new kibana instance on a separate linux server.

On n1, I ran this command /usr/share/elasticsearch/bin/elasticsearch-service-token elastic/kibana kibana_token.

On my kibana server, I pasted the token into /etc/kibana/kibana.yml -> elasticsearch.serviceAccountToken: <the token>.

I also updated my /etc/kibana/kibana.yml -> elasticsearch.hosts: ['n1', 'n2', 'n3']. But Kibana won't boot up like this. I can get kibana to boot up if I choose ONE of these options:

Option 1: remove n2 and n3 from elasticsearch.hosts

OR

Option 2: copy the /etc/elasticsearch/service_tokens to n2 and n3 then reboot those nodes.

Are any of these considered best practices? Or should I be doing something else?

learningelastic · February 25, 2023, 8:37pm

Someone from https://opster.com replied to me on slack gave me this solution which worked for me:

You can avoid that by instead using the REST interface to manage your service account tokens.

system · March 25, 2023, 8:37pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Kibana service account not working for v8 upgrade deprecation note Kibana	5	6768	March 4, 2022
Kibana not starting after making service account changes for upgrade to 8 Kibana elastic-stack-security	7	8506	March 21, 2022
Service Tokens Replication Across Nodes and Kibana Integration Elastic Search	3	59	September 22, 2025
Can i use multiple hosts of same elasticsearch cluster in Kibana 4 Kibana	4	3278	July 6, 2017
Kibana 4.1 talking to multiple elastic nodes Kibana	4	674	July 6, 2017

Should I be copying the `/etc/elasticsearch/service_tokens` to several elastic nodes?

Related topics