文章目录
前言
本篇文章是介绍如何开启es身份认证!
一、ElaticSearch
1.更改配置文件
需要在配置文件中开启x-pack验证, 修改config目录下面的elasticsearch.yml文件,在里面添加如下内容,并重启
xpack.security.enabled: true
2. 生成密码
使用elasticsearch-setup-passwords interactive命令生成用户密码
Initiating the setup of passwords for reserved users elastic,apm_system,kibana,logstash_system,beats_system,remote_monitoring_user.
You will be prompted to enter passwords as the process progresses.
Please confirm that you would like to continue [y/N]y
Enter password for [elastic]:
Reenter password for [elastic]:
Enter password for [apm_system]:
Reenter password for [apm_system]:
Enter password for [kibana]:
Reenter password for [kibana]:
Enter password for [logstash_system]:
Reenter password for [logstash_system]:
Enter password for [beats_system]:
Reenter password for [beats_system]:
Enter password for [remote_monitoring_user]:
Reenter password for [remote_monitoring_user]:
Changed password for user [apm_system]
Changed password for user [kibana]
Changed password for user [logstash_system]
Changed password for user [beats_system]
Changed password for user [remote_monitoring_user]
Changed password for user [elastic]
3.设置kibana
在kibana中config下面kibana.yml文件中添加配置
elasticsearch.username: "elastic"
elasticsearch.password: "password"
4. 重启kibana
ps -ef |grep kibana|grep -v grep|awk '{print $2}'|xargs kill -9
nohup kibana >/var/log/kibana/info.log 2>&1 &
总结
这样之后我们就可以使用用户密码访问es和kibana了