Why is the default value of `xpack.security.http.ssl.enabled` in ElasticSearch's Docker Image set to `true`?

TimV · September 5, 2024, 11:26am

It's not (or at least, not exactly in those terms).

On startup, if you have not performed any security configuration, elasticsearch will auto configure security and write an updated elasticsearch.yml that turns on SSL for transport and http.

You can disable this by either:

setting xpack.security.autoconfiguration.enabled to false
configuring some part of security yourself (which can be as simple as setting xpack.security.enabled to true).

Topic		Replies	Views
Only expose HTTPS Elasticsearch	6	889	November 18, 2018
How to config kibana if xpack.security.http.ssl.enabled is false Kibana elastic-stack-security , docker	8	4892	July 19, 2022
When `discovery.type: single-node` is not set, disabling TLS at the HTTP layer will cause elasticsearch to fail to start Elasticsearch docker	3	91	October 14, 2024
"environment: - xpack.security.enabled=true" does not work with docker-compose Elasticsearch elastic-stack-security , docker	3	7288	December 29, 2021
Enable x-pack on a Docker-Compose elasticsearch cluster Elasticsearch docker	4	9041	February 4, 2020

Why is the default value of `xpack.security.http.ssl.enabled` in ElasticSearch's Docker Image set to `true`?

Related topics