How to bootstrap a cluster to enable security plugin in production

yuecong · August 10, 2019, 5:13pm

what is the difference between opendistro_security.allow_default_init_securityindex and securityadmin.sh?

In production, if I configured certs and internal_users, roles, etc correctly, can I use opendistro_security.allow_default_init_securityindex: true to bootstrap the cluster?
Or do I have to run securityadmin.sh at least once to bootstrap?

I am trying to find what does opendistro_security.allow_default_init_securityindex do from the doc, but I can not find. can someone help explain?

Thanks

pablo · May 17, 2021, 4:51pm

Hello @yuecong

You would have to use securityadmin.sh with custom configuration and certificates.
“opendistro_security.allow_default_init_securityindex: true” allows to run install_demo_configuration.sh which initialize demo certificates, configuration and uploads to security plugin in ES.

Topic		Replies	Views
Handling .opendistro_security index in helm installations Security	1	898	September 18, 2020
Running securityadmin.sh in Kubernetes PODs Security	1	606	August 12, 2021
Setting up security for OpenSearch Security configure , install	3	1188	March 2, 2022
After securityadmin.sh opendistro_security index does not exist Security	1	1261	February 25, 2020
Unable to run securityadmin.sh OpenDistro	1	373	November 28, 2022

How to bootstrap a cluster to enable security plugin in production

Related Topics