Unknown secure setting [secure_bind_password] please check that any required plugins are installed

Elastic Orchestration Elastic Cloud on Kubernetes (ECK)
1

Hi,
when I deploy below in my kubernetes cluster 1.15.3. POD is failing with secure setting error message.

How to fix this error?

apiVersion: v1
kind: Secret
metadata:
  name: secure-bind-password
type: Opaque
data:
  xpack.security.authc.realms.ldap.ldap1.secure_bind_password: XXXXXXaW4=
---
apiVersion: elasticsearch.k8s.elastic.co/v1alpha1
kind: Elasticsearch
metadata:
  name: quickstart
spec:
  version: 7.2.0
  secureSettings:
    secretName: secure-bind-password  
  image: docker.elastic.co/elasticsearch/elasticsearch:7.3.1 
  nodes:
  - nodeCount: 1
    config:
      node.master: true
      node.data: true
      node.ingest: true
      xpack.security.authc.realms: &xpack-realms
        # explicitly enable file and native realm, otherwise it's disabled implicitly when other realms are used.
        file.file1: { order: 0 }
        native.native1: { order: 1 }
        ldap.ldap1:
          order: 2
          url: "ldap://example:389"
          bind_dn: ""
          secure_bind_password: xpack.security.authc.realms.ldap.ldap1.secure_bind_password		  
---

error messae

"stacktrace": ["org.elasticsearch.bootstrap.StartupException: java.lang.IllegalArgumentException: unknown secure setting [secure_bind_password] please check that any required plugins are installed, or check the breaking changes documentation for removed settings",
"at org.elasticsearch.bootstrap.Elasticsearch.init(Elasticsearch.java:163) ~[elasticsearch-7.3.1.jar:7.3.1]",
"at org.elasticsearch.bootstrap.Elasticsearch.execute(Elasticsearch.java:150) ~[elasticsearch-7.3.1.jar:7.3.1]",
"at org.elasticsearch.cli.EnvironmentAwareCommand.execute(EnvironmentAwareCommand.java:86) ~[elasticsearch-7.3.1.jar:7.3.1]",
"at org.elasticsearch.cli.Command.mainWithoutErrorHandling(Command.java:124) ~[elasticsearch-cli-7.3.1.jar:7.3.1]",
"at org.elasticsearch.cli.Command.main(Command.java:90) ~[elasticsearch-cli-7.3.1.jar:7.3.1]",
"at org.elasticsearch.bootstrap.Elasticsearch.main(Elasticsearch.java:115) ~[elasticsearch-7.3.1.jar:7.3.1]",
"at org.elasticsearch.bootstrap.Elasticsearch.main(Elasticsearch.java:92) ~[elasticsearch-7.3.1.jar:7.3.1]",
"Caused by: java.lang.IllegalArgumentException: unknown secure setting [secure_bind_password] please check that any required plugins are installed, or check the breaking changes documentation for removed settings",
"at org.elasticsearch.common.settings.AbstractScopedSettings.validate(AbstractScopedSettings.java:531) ~[elasticsearch-7.3.1.jar:7.3.1]",
"at org.elasticsearch.common.settings.AbstractScopedSettings.validate(AbstractScopedSettings.java:476) ~[elasticsearch-7.3.1.jar:7.3.1]",
"at org.elasticsearch.common.settings.AbstractScopedSettings.validate(AbstractScopedSettings.java:447) ~[elasticsearch-7.3.1.jar:7.3.1]",
"at org.elasticsearch.common.settings.AbstractScopedSettings.validate(AbstractScopedSettings.java:418) ~[elasticsearch-7.3.1.jar:7.3.1]",
2

Hi @sfgroups1,

Looking at the ES doc, I think the secure setting name must be "xpack.security.authc.realms.ldap.ldap1.secure_bind_password". The log error seems to indicate you set "secure_bind_password". Can you double-check your secret named "secure-bind-password" correctly has a key named "xpack.security.authc.realms.ldap.ldap1.secure_bind_password"?

3

Thanks for the tips, I had duplicate entry in the secret. now it works.