Upgrade to x-pack failure, cannot set passwords

rmac · May 7, 2018, 5:21pm

Per the opening of x-pack, I've tried to upgrade to it with my current cluster. I perhaps did not do enough research into what's involved but here I am.
I have a trial license and ES version 6.1.

Here's what I did:

Disabled shard routing allocation
Performed a sync-flush
Set indices to read-only (<-- might be my problem)
Stopped elasticsearch on all nodes, installed x-pack
Set a bootstrap.password (/usr/share/elasticsearch/bin/elasticsearch-keystore remove bootstrap-password --stdin)
Confirmed it was working with an /_xpack/security/_authenticate/ request.
/usr/share/elasticsearch/bin/x-pack/setup-passwords interactive timed out after prompting for passwords
Basic authentication with bootstrap password now fails.
All of the cluster is now down.

Logs I managed to pull without my brain exploding:

gist.github.com

https://gist.github.com/Swashy/1e0609265196c71f77d5786cf7963f80

gistfile1.txt

[2018-05-07T11:36:19,007][WARN ][o.e.g.DanglingIndicesState] [elb2] [[.watches/1hdsPEs-QOyH7rcIf-9d7g]] can not be imported as a dangling index, as index with same name already exists in cluster metadata
[2018-05-07T11:36:23,409][WARN ][o.e.g.DanglingIndicesState] [elb2] [[.monitoring-es-6-2018.05.07/MP0pxArNQQashG7GtRszDw]] can not be imported as a dangling index, as index with same name already exists in cluster metadata
[2018-05-07T11:36:23,409][WARN ][o.e.g.DanglingIndicesState] [elb2] [[.watches/1hdsPEs-QOyH7rcIf-9d7g]] can not be imported as a dangling index, as index with same name already exists in cluster metadata
[2018-05-07T11:36:26,018][WARN ][o.e.g.DanglingIndicesState] [elb2] [[.monitoring-es-6-2018.05.07/MP0pxArNQQashG7GtRszDw]] can not be imported as a dangling index, as index with same name already exists in cluster metadata
[2018-05-07T11:36:26,018][WARN ][o.e.g.DanglingIndicesState] [elb2] [[.watches/1hdsPEs-QOyH7rcIf-9d7g]] can not be imported as a dangling index, as index with same name already exists in cluster metadata
[2018-05-07T11:36:29,507][WARN ][o.e.g.DanglingIndicesState] [elb2] [[.monitoring-es-6-2018.05.07/MP0pxArNQQashG7GtRszDw]] can not be imported as a dangling index, as index with same name already exists in cluster metadata
[2018-05-07T11:36:29,507][WARN ][o.e.g.DanglingIndicesState] [elb2] [[.watches/1hdsPEs-QOyH7rcIf-9d7g]] can not be imported as a dangling index, as index with same name already exists in cluster metadata
[2018-05-07T11:36:32,635][WARN ][o.e.g.DanglingIndicesState] [elb2] [[.monitoring-es-6-2018.05.07/MP0pxArNQQashG7GtRszDw]] can not be imported as a dangling index, as index with same name already exists in cluster metadata
[2018-05-07T11:36:32,635][WARN ][o.e.g.DanglingIndicesState] [elb2] [[.watches/1hdsPEs-QOyH7rcIf-9d7g]] can not be imported as a dangling index, as index with same name already exists in cluster metadata
[2018-05-07T11:36:39,067][WARN ][o.e.g.DanglingIndicesState] [elb2] [[.monitoring-es-6-2018.05.07/MP0pxArNQQashG7GtRszDw]] can not be imported as a dangling index, as index with same name already exists in cluster metadata

This file has been truncated. show original

Pretty stuck from where to go from here. Am I screwed with my data even if I upgrade to Elastic 6.2? Is the new open version of x-pack only available on 6.3?

Yogesh_Gaikwad · May 7, 2018, 9:28pm

Hi @rmac,

Did you try to upgrade your cluster to 6.3?
The open version of x-pack is available 6.3 onwards.

TimV · May 8, 2018, 12:19am

Your cluster is not in good shape, but hopefully we can get you back up and running.

Note, as @Yogesh_Gaikwad has said, Open X-Pack will only be available in 6.3, and it will come pre-installed so your attempts to install X-Pack aren't going to achieve much.

Also, to be 100% clear, even with the Open X-Pack security is a commercial feature that requires a paid license. We strongly recommend enabling X-Pack security, but unless you purchase a gold or platinum subscription then you'll be limited to a 30 day trial and then need to disable security again.

What we need to do is get you access to your cluster again, so you can then set indices to read-write again and hopefully that will get your cluster back to green.

The simplest step you can take is to simply turn off security while you get things sorted. That will allow you to set the cluster settings back to normal (allow writes, allow allocation) and then you can try to setup passwords again. The bootstrap password process cannot run if your cluster is read-only (and will typically also fail if you disable allocation, but it depends on the exact details).

Add

xpack.security.enabled: false

into your elasticsearch.yml on every node, and restart.
That should resolve your issues. If not, please come back with updated logs.

rmac · May 8, 2018, 2:46pm

Thank you very much! Didn't realize the x-pack could be manipulated through elasticsearch.yml, missed that setting in the docs

Is there a reference page in the docs that has all the directives I can declare in elasticsearch.yml for x-pack?

I've also removed x-pack and will wait patiently for 6.3. Sorry for my confusion...

TimV · May 9, 2018, 12:40am

It splits by feature, so there's separate pages for security, monitoring, etc.

system · June 6, 2018, 12:40am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.