1、先说一下elasticsearch配置用户名密码访问的配置方法:生成ssl的p12证书(要设置证书密码):bin/elasticsearch-certutil cabin/elasticsearch-certutil cert --ca elastic-stack-ca.p12
2、创建用户密码(默认要为6个用户创建密码):bin/elasticsearch-setup-passwords interactive
3、elasticsearch.yml配置文件内容#集群名字,目前是单节点cluster.name: "test"#节点名node.name: "es_test"#配置可进行数据交互的ipnetwork.host: 0.0.0.0#允许http跨域访问,es_head插件必须开启http.cors.enabled: truehttp.cors.allow-origin: "*"#数据存储路径path.data: /usr/share/elasticsearch/data#日志存储路径path.logs: /usr/share/elasticsearch/logs#不锁定jvm内存bootstrap.memory_lock: false#备份库path.repo: ["/usr/share/elasticsearch/data/backup"]#主节点cluster.initial_master_nodes: ["es_test"]#es_head连接时读取用户名密码http.cors.allow-headers: Authorization,X-Requested-With,Content-Length,Content-Type#开启密码认证xpack.security.enabled: truexpack.license.self_generated.type: basicxpack.security.transport.ssl.enabled: truexpack.security.transport.ssl.verification_mode: certificatexpack.security.transport.ssl.keystore.path: /usr/share/elasticsearch/config/certs/elastic-certificates.p12xpack.security.transport.ssl.truststore.path: /usr/share/elasticsearch/config/certs/elastic-certificates.p12
4、报错:ElasticsearchSecurityException[failed to load SSL configuration [xpack.security.transport.ssl]]; nested: ElasticsearchException[failed to initialize SSL TrustManager - not permitted to read truststore file
5、解决方法:配置elastic-certificates.p12的文件权限即可chmod 777elastic-certificates.p12
