Securing Elastic search Instance with Shield

Reading Time : ~ .

Shield allows you to protect elasticsearch data with a username and password. It provides additional functionalities like like encryption, role-based access control, IP filtering. It is Official Plugin of Elasticsearch which embeds well with other elasticsearch products like kibana and logstash. Initially Shield is available for 30days try after which you can renew the license

Installing ElasticSearch

sudo add-apt-repository ppa:webupd8team/java
sudo apt-get update
sudo apt-get -y install oracle-java8-installer
wget https://download.elastic.co/elasticsearch/elasticsearch/elasticsearch-2.3.2.deb
sudo dpkg -i elasticsearch-2.3.2.deb
sudo update-rc.d elasticsearch defaults 95 10

Setting up Shield

cd /usr/share/elasticsearch (ES_HOME Directory)
bin/plugin -i elasticsearch/license/latest
bin/plugin -i elasticsearch/shield/latest
service elasticsearch restart
bin/shield/esusers useradd <user-name> -p <password> -r <role-name>


Verifying shield:

curl -u <user-name>:<password>  localhost:9200
    By Posted On
SENIOR DEVELOPER at MICROPYRAMID

Need any Help in your Project?Let's Talk

Latest Comments
Related Articles
Clustering of Docker Containers using Docker Swarm Jagadeesh V

There are many available ways of Docker clustering. Kubernetes, Docker cloud, Docker Swarm etc., In this Tutorial we will learn setting up a cluster using ...

Continue Reading...
Fabric - Learning part1 Ashwin Kumar

Using Fabric, we can configure Linux production server with uwsgi, nginx, vsftpd, mysql, mongodb, postfix, php, python tools, and other relevant pieces of software single-handedly ...

Continue Reading...
Web Hooks for Gitlab using PHP and Shell Scripts Jagadeesh V

Web-hooks play vital role if you are in Continuous Integration(CI). Higher Level organizations follow GitLab for CI purposes if they operate on open source solutions ...

Continue Reading...

Subscribe To our news letter

Subscribe to our news letter to receive latest blog posts into your inbox. Please fill your email address in the below form.
*We don't provide your email contact details to any third parties