How to bootstrap a cluster to enable security plugin in production

yuecong · August 10, 2019, 5:13pm

what is the difference between opendistro_security.allow_default_init_securityindex and securityadmin.sh?

In production, if I configured certs and internal_users, roles, etc correctly, can I use opendistro_security.allow_default_init_securityindex: true to bootstrap the cluster?
Or do I have to run securityadmin.sh at least once to bootstrap?

I am trying to find what does opendistro_security.allow_default_init_securityindex do from the doc, but I can not find. can someone help explain?

Thanks

pablo · May 17, 2021, 4:51pm

Hello @yuecong

You would have to use securityadmin.sh with custom configuration and certificates.
“opendistro_security.allow_default_init_securityindex: true” allows to run install_demo_configuration.sh which initialize demo certificates, configuration and uploads to security plugin in ES.

Topic		Replies	Views
Setting up security for OpenSearch Security configure , install	3	1944	March 2, 2022
Running securityadmin.sh in Kubernetes PODs Security	1	831	August 12, 2021
Trouble configuring OpenDistro Security Index Security	1	1905	May 21, 2021
Unable to initialize .opendistro_security index Security	4	7991	June 10, 2023
OpenSearch Security not initialized Security releases	7	25812	August 8, 2022

How to bootstrap a cluster to enable security plugin in production

Related topics