版本:
elasticsearch5.1.1
kibana5.1.1
下载地址 :https://www.elastic.co/downloads
现在Marvel的功能已经集成在x-pack里面,安装非常方便。下载指定环境的安装包后,
bin/elasticsearch-plugin install x-pack
bin/kibana-plugin install x-pack
kibana.yml中指定elasticsearche的地址elasticsearch.url: "http://localhost:9200"
启动即可
bin/elasticsearch
bin/kibana-plugin
浏览器上输入:
http://localhost:5601
x-pack是Elastic Stack的扩展,将安全、警报、监视、报告和图形功能包含在一个。5.0之前的版本,需要单独安装Marvel、Watcher、Shield.
此外x-pack可以个性化定制这些功能,列表如下:
Setting Description
xpack.security.enabled
Set to false
to disable X-Pack security. Configure in
bothelasticsearch.yml
and kibana.yml
.
xpack.monitoring.enabled
Set to false
to disable X-Pack monitoring. Configure in
bothelasticsearch.yml
and kibana.yml
.
xpack.graph.enabled
Set to false
to disable X-Pack graph. Configure in
bothelasticsearch.yml
and kibana.yml
.
xpack.watcher.enabled
Set to false
to disable Watcher. Configure in elasticsearch.yml
only.
xpack.reporting.enabled
Set to false
to disable X-Pack reporting. Configure in kibana.yml
only.
PS:注意事项
1)安装时会弹出需要允许额外的授权,输入Y即可。
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ @ WARNING: plugin requires additional permissions @ @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ * java.lang.RuntimePermission accessClassInPackage.com.sun.activation.registries * java.lang.RuntimePermission getClassLoader * java.lang.RuntimePermission setContextClassLoader * java.lang.RuntimePermission setFactory * java.security.SecurityPermission createPolicy.JavaPolicy * java.security.SecurityPermission getPolicy * java.security.SecurityPermission putProviderProperty.BC * java.security.SecurityPermission setPolicy * java.util.PropertyPermission * read,write * java.util.PropertyPermission sun.nio.ch.bugLevel write * javax.net.ssl.SSLPermission setHostnameVerifier See http://docs.oracle.com/javase/8/docs/technotes/guides/security/permissions.html for descriptions of what these permissions allow and the associated risks. Continue with installation? [y/N]y
2 如果关闭了允许自动创建动态索引的话,需要给x-pack提供一下权限
action.auto_create_index: .security,.monitoring*,.watches,.triggered_watches,.watcher-history*
3 增加验证用户机制,访问需要用户名和密码,默认为elastic和changeme
对elasticsearch的curl访问,也需要在http header上增加授权,Authorization: Basic XXXXX
XXXX= name:password base64加密。例如上述的elastic:changeme 加密后为ZWxhc3RpYzpjaGFuZ2VtZQ==