Stack Overflow
Stack Overflow

Questions tagged [search-guard]

38 questions
19
votes
1 answer

How to have Keycloak login page in iframe?

There is a web server running locally, and I want to have Keycloak (on another domain) login page inside the iframe. I tried the following setting in the Keycloak Real Settings > Security Defenses > Headers > Content-Security-Policy frame-src 'self'…
srgbnd
  • 5,404
  • 9
  • 44
  • 80
5
votes
1 answer

How to parse DER bytes?

I am trying to create cert for Elasticsearch Searchguard. One requirement is that the cert must include oid:1.2.3.4.5.5 in SANs. I am using GO to generate that cert. After some trial and error I have figured out that if I use []byte{0x88, 0x05,…
codefx
  • 9,872
  • 16
  • 53
  • 81
4
votes
0 answers

Elasticsearch not running with search guard

ES v2.4.1 SG-SSL v2.4.1.16 SG v2.4.1.6 CentOS 7.2 Im able to run Elasticsearch with Search-Guard-SSL. I generated the certs/keys via the example script from Search Guard. Here is the info on the kirk client cert that I generated > openssl x509…
Chris F
  • 14,337
  • 30
  • 94
  • 192
4
votes
0 answers

Search-guard not integrating with elasticsearch

My current version of elasticsearch is 1.5.2. I recently installed search-guard with the following command - bin/plugin -i com.floragunn/search-guard/0.5 . Before that I created an index with the following configuration - curl -XPUT…
Pavan R
  • 119
  • 2
  • 9
3
votes
1 answer

Run a bash script after the primary service in a docker container is fully loaded

I'm using this docker repository to install elasticsearch and searchguard The searchguard requires running a script bin/init_sg.sh after the elasticsearch is fully loaded. I don't like running docker exec -it elasticsearch bin/init_sg.sh manually…
RedGiant
  • 4,444
  • 11
  • 59
  • 146
2
votes
0 answers

How can I run a searchguard set up script after elasticsearch is up and running in docker?

I have been trying to make the searchguard setup script init_sg.sh to run after elasticsearch automatically. I don't want to do it manually with docker exec. Here's what I have tried. entrypoint.sh: #! /bin/sh elasticsearch source…
RedGiant
  • 4,444
  • 11
  • 59
  • 146
1
vote
0 answers

Elasticsearch Searchguard unassigned shards

i've ran into the issue with unassigned searchguard shards when I've added new nodes to the ElasticSearch cluster. Cluster is located in public-cloud and has enabled awareness setting with node.awareness.attributes: availability_zone. Searchguard…
bulnv
  • 21
  • 3
1
vote
1 answer

I want to replace the search guard demo certificates with my own certificate

I have done the setup of elastic stack using search guard plugin in a kubernetes environment. Now, I want to replace these demo certificates with my own certificate. And also I want the search guard kibana dashboard to be exposed through the ingress…
Nitesh Ratnaparkhe
  • 605
  • 5
  • 20
1
vote
1 answer

not enough master nodes discovered during pinging - Elasticsearch cluster self signed certificate

I used SearchGuard to encrypt nodes in ElasticSearch cluster following this guide Master: cluster.name: client1 searchguard.enterprise_modules_enabled: false node.name: ekl.test.com node.master: true node.data: true node.ingest:…
Milister
  • 648
  • 1
  • 15
  • 33
1
vote
0 answers

Is Xpack mandatory for cross cluster search with encryption

I have a OSS elasticsearch with SearchGuard plugin for HTTP and transport encryption in single cluster. I want to be able to do a cross cluster search across two such cluster. Is X-pack mandatory (to create that user / role) to search across local…
Urvishsinh Mahida
  • 1,440
  • 16
  • 23
1
vote
1 answer

EFK with Searchguard

I have installed an EFK stack to log nginx access log. While using fresh install Im able to send data from Fluentd to elasticsearch without any problem. However, I installed searchguard to implement authentication on elasticsearch and kibana. Now Im…
muttalebm
  • 552
  • 1
  • 6
  • 22
1
vote
1 answer

sgadmin.sh failed elasticsearch && searchguard

While trying to exucte ./sgadmin.sh -ts truststore.jks -tspass 90f3cbdb3eabe04f815b -ks CN=sgadmin-keystore.jks -kspass a65d2a4fa62d7ed7a4d5 -h host -p 9200 -nhnv -cn eslcl1 -cd ../sgconfig/ I am getting the following error: Cannot retrieve…
F.BOU
  • 327
  • 3
  • 5
  • 17
1
vote
0 answers

Configuring searchguard on ELK for security

I have ELK setup in my environment. Logstash and filebeat is running on a single machine. Kibana and elasticsearch is running on another machine. The flow is working fine. Filebeat is able to harvest the logs and send it to logstash. And logstash…
vinod hy
  • 827
  • 2
  • 14
  • 26
1
vote
0 answers

Access controll list(ACL) in searchguard

Can I have the complete list of this acl: indices:data/read* for example: indices:data/read/get indices:data/read/mget indices:data/read/search indices:data/read/msearch ... Best Regards.
Anis Khadhri
  • 177
  • 1
  • 2
  • 12
1
vote
0 answers

What happens with shared Kibana graphs when SearchGuard gets installed?

Couldn't find any information about this online, but does anyone know what happens to graphs that are shared on kibana (and potentially embeded elsewhere) when searchguard is installed around Kibana + ElasticSearch - will the same security happen…
Jordan Wells
  • 101
  • 14
1
2 3