Versions (relevant - OpenSearch/Dashboard/Server OS/Browser):
Hello team, I recently installed openSearch 2.18 but for some reason all passwords in internal_users.yml are hashed.
Is there a way to reset those passwords or any clue how to figure out passwords for built-in admin and any other users ?
Thnx.
Describe the issue:
Configuration:
Relevant Logs or Screenshots:
Hi @dzighoku ,
After installing OpenSearch, you must change passwords for built-in users as per the documentation below:
If you are using binaries to install your cluster, please apply the changes after adding new passwords to the config.yaml file.
Thank for your answer!
In instruction I could see that there are three certificates that involved in password set up.
./securityadmin.sh -f ../../../config/opensearch-security/internal_users.yml \
-t internalusers \
-icl \
-nhnv \
-cacert ../../../config/root-ca.pem \
-cert ../../../config/kirk.pem \
-key ../../../config/kirk-key.pem
root-ca.pem was generated during installation,
but what’s kirk-key.pem and key.pem certificates that are mentioned in instruction ?
In the -cert option, the path to the admin’s certificate must be added. In the -key option, the path to the admin’s private key must be added.
The kirk.pem and kirk-key.pem files are demo certificates. They must also be replaced for a production environment.