TLS/SSL on Elasticsearch (new version 7.1) (Basic License)

Elastic Stack Elasticsearch
1

Hi, now with version 7.1 TLS and RBAC are licensed under the free-of-charge Elastic Basic license. I was able to configure TLS from Kibana to Browser.

But in the documentation, to do the same for elasticsearch (HTTPS) the configuration is:

xpack.security.transport.ssl.enabled: true
xpack.security.transport.ssl.verification_mode: certificate
xpack.security.transport.ssl.keystore.path: certs/elastic-certificates.p12
xpack.security.transport.ssl.truststore.path: certs/elastic-certificates.p12

And when I put that on the elasticsearch YML file, it returns an error because I dont have XPACK.

So my question is: in Elasticsearch 7.1 with Basic License what is configuration to enable TLS?

2

What's the exact error you get?

3

This error:

java.lang.IllegalStateException: failed to load plugin class [org.elasticsearch.xpack.core.XPackPlugin]

The configuration is:

xpack.security.enabled: true
xpack.security.transport.ssl.enabled: true
xpack.security.transport.ssl.verification_mode: certificate
xpack.security.http.ssl.enabled: true
xpack.security.http.ssl.key: /home/user/10.73.97.66.key.pem
xpack.security.http.ssl.certificate: /home/user/certificado_concatenado.cert.pem
#xpack.http.ssl.certificate_authorities: /home/user/ca.cert.pem

4

Keep reading - there will be additional information in the log.

My guess is that the problem will be that you have enabled transport ssl, but haven't configured a certificate or keystore.

5

I will try that ... thanks

6

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.