Securing Elastic search Instance with Shield

Reading Time : ~ .

Shield allows you to protect elasticsearch data with a username and password. It provides additional functionalities like like encryption, role-based access control, IP filtering. It is Official Plugin of Elasticsearch which embeds well with other elasticsearch products like kibana and logstash. Initially Shield is available for 30days try after which you can renew the license

Installing ElasticSearch

sudo add-apt-repository ppa:webupd8team/java
sudo apt-get update
sudo apt-get -y install oracle-java8-installer
wget https://download.elastic.co/elasticsearch/elasticsearch/elasticsearch-2.3.2.deb
sudo dpkg -i elasticsearch-2.3.2.deb
sudo update-rc.d elasticsearch defaults 95 10

Setting up Shield

cd /usr/share/elasticsearch (ES_HOME Directory)
bin/plugin -i elasticsearch/license/latest
bin/plugin -i elasticsearch/shield/latest
service elasticsearch restart
bin/shield/esusers useradd <user-name> -p <password> -r <role-name>


Verifying shield:

curl -u <user-name>:<password>  localhost:9200
    By Posted On
SENIOR DEVELOPER at MICROPYRAMID

Need any Help in your Project?Let's Talk

Latest Comments
Related Articles
Fabric - Learning part1 Ashwin Kumar

Using Fabric, we can configure Linux production server with uwsgi, nginx, vsftpd, mysql, mongodb, postfix, php, python tools, and other relevant pieces of software single-handedly ...

Continue Reading...
Understanding Logstash Parsing Configurations and options Jagadeesh V

In This Tutorial we will learn to customize Logstash to parse any type of Log Files. Logstash helps us to process logs and other event ...

Continue Reading...
How to setup http password authentication with nginx Nikhila Mergu

HTTP Authentication is used to allow access limit to a site or particular directories by validating the username and password. HTTP basic authentication can also ...

Continue Reading...

Subscribe To our news letter

Subscribe to our news letter to receive latest blog posts into your inbox. Please fill your email address in the below form.
*We don't provide your email contact details to any third parties