Securing Elastic search Instance with Shield

Reading Time : ~ .

Shield allows you to protect elasticsearch data with a username and password. It provides additional functionalities like like encryption, role-based access control, IP filtering. It is Official Plugin of Elasticsearch which embeds well with other elasticsearch products like kibana and logstash. Initially Shield is available for 30days try after which you can renew the license

Installing ElasticSearch

sudo add-apt-repository ppa:webupd8team/java
sudo apt-get update
sudo apt-get -y install oracle-java8-installer
wget https://download.elastic.co/elasticsearch/elasticsearch/elasticsearch-2.3.2.deb
sudo dpkg -i elasticsearch-2.3.2.deb
sudo update-rc.d elasticsearch defaults 95 10

Setting up Shield

cd /usr/share/elasticsearch (ES_HOME Directory)
bin/plugin -i elasticsearch/license/latest
bin/plugin -i elasticsearch/shield/latest
service elasticsearch restart
bin/shield/esusers useradd <user-name> -p <password> -r <role-name>


Verifying shield:

curl -u <user-name>:<password>  localhost:9200
    By Posted On
SENIOR DEVELOPER at MICROPYRAMID

Need any Help in your Project?Let's Talk

Latest Comments
Related Articles
How to setup http password authentication with nginx Nikhila Mergu

HTTP Authentication is used to allow access limit to a site or particular directories by validating the username and password. HTTP basic authentication can also ...

Continue Reading...
Elastic Search Security Measures Jagadeesh V

After Installing Elastic Search in production, many new developers leave it unconfigured. In this Post, we will look into important config file changes and its ...

Continue Reading...
Automate Django Deployments with fabfile Shirisha Gaddi

Fabric is a Python library and command-line tool with the ability to execute commands on a remote server. It is designed to use SSH to ...

Continue Reading...

Subscribe To our news letter

Subscribe to our news letter to receive latest blog posts into your inbox. Please fill your email address in the below form.
*We don't provide your email contact details to any third parties