Elasticsearch security - Kibana.yml


(francisca) #1

Hello,

When I am using the free pack of security to Elasticsearch, which properties should I put in Kibana to connect to Elasticsearch? The user and password? And if I have more than one user and passwords defined in Elasticsearch. Is there a way to define these? (without the payed package)

Thank you.


(Simone Scarduzio) #2

During any given Kibana browser session, the data requests are forwarded to Elasticsearch, some other calls are done by the Kibana server process.

The username and password you set in kibana.yml as per our plugin installation instructions, will be used by the kibana server process. The browser will need to provide their own basic auth credentials.

So to answer your question, a user will log in using their browser’s default basic auth prompt when browsing Kibana (without our non-free Kibana plugin). It’s going to be a less than smooth experience because there won’t be a logout button and some Kibana apps will show errors.


(francisca) #3

Thank you! I already tested and worked!


(francisca) #4

I am trying to embed the dashboards, there is a way to insert the credentials in iframe to skip this login?
imagem
Thank you!
(using only elasticsearch free plugin)


(Simone Scarduzio) #6

Have you tried with embedding the creds in the url?


(francisca) #7

Yes, using this strategy the iframe does not work.


(Simone Scarduzio) #8

OK if that doesn’t work, then the only (and better) option is JWT deep linking, we have a customer who heavily uses this.

However ROR PRO/Enterprise is required.


(Simone Scarduzio) #9

moving this to new topic Kibana - iframe


(Simone Scarduzio) closed #10