一、集群开启xpack安全配置后无法启动
在配置文件中增加 xpack.security.enabled: true 后无法启动,日志中提示如下
Transport SSL must be enabled if security is enabled. Please set [xpack.security.transport.ssl.enabled] to [true] or disable security by setting [xpack.security.enabled] to [false]1)需要在配置文件中,开启ssl传输,并且配置加密秘钥路径
xpack.security.transport.ssl.enabled: true
xpack.security.transport.ssl.verification_mode: certificate
xpack.security.transport.ssl.client_authentication: required
xpack.security.transport.ssl.keystore.path: elastic-certificates.p12
xpack.security.transport.ssl.truststore.path: elastic-certificates.p122)通过如下命令创建CA
./bin/elasticsearch-certutil ca 3)颁发证书
./bin/elasticsearch-certutil cert --ca elastic-stack-ca.p12 执行成功后后在节点路径中会增加 elastic-certificates.p12 和 elastic-stack-ca.p12 文件,
4)将这两个文件移动到 config 目录中
执行完成以上步骤后在重启服务,便可以成功
注意:如果执行启动命令还是有问题,或者在某个节点无法链接到集群,建议把data目录的中文件全部删除,在执行启动命令
二、设置用户密码失败
使用 ./elasticsearch-setup-passwords auto 设置密码失败,报错信息如下
Unexpected response code [503] from calling PUT http://127.0.0.1:9200/_security/user/apm_system/_password?pretty
Cause: Cluster state has not been recovered yet, cannot write to the [null] indexPossible next steps:
* Try running this tool again.
* Try running with the --verbose parameter for additional messages.
* Check the elasticsearch logs for additional error details.
* Use the change password API manually. ERROR: Failed to set password for user [apm_system].原因:集群没有正常启动,需要保证集群为启动状态后
三、跨集群查询失败
夸集群查询必须在集群中节点增加一个角色 remote_cluster_client_role,在官方文档中有提示说明,地址如下:Node | Elasticsearch Guide [8.1] | Elastic。这一点需要注意
送一波福利:
福利一
有需要内推JD的同学,可以私信或留言,我帮您内推,流程快!!!
有需要内推JD的同学,可以私信或留言,我帮您内推,流程快!!!
有需要内推JD的同学,可以私信或留言,我帮您内推,流程快!!!
福利二
福利三
![[Meachines] [Medium] MonitorsThree SQLI+Cacti-CMS-RCE+Duplicati权限提升](https://img-blog.csdnimg.cn/img_convert/ec0a89c20cb3cca3b2df26efab562a59.jpeg)
