Does anyone have an alternate build document that could be sanitized and shared?
I am new to ElasticSearch and SearchGuard and having hard time following the guide provided. I suspect my continued issues are related to missing configuration requirements.
Not that we know of. However, could you share some information regarding what parts are hard to follow? We’d love to improve documentation, and we know there are still some rough edges. Any information from your side is greatly appreciated!
On Thursday, 10 November 2016 00:09:03 UTC+2, Jared wrote:
Does anyone have an alternate build document that could be sanitized and shared?
I am new to ElasticSearch and SearchGuard and having hard time following the guide provided. I suspect my continued issues are related to missing configuration requirements.
Thanks for the reply. To give some good feedback I will go through another trial run and keep some detailed notes. I will post back later this week.
On Tuesday, November 15, 2016 at 11:12:01 AM UTC-7, in...@search-guard.com wrote:
Not that we know of. However, could you share some information regarding what parts are hard to follow? We’d love to improve documentation, and we know there are still some rough edges. Any information from your side is greatly appreciated!
On Thursday, 10 November 2016 00:09:03 UTC+2, Jared wrote:
Does anyone have an alternate build document that could be sanitized and shared?
I am new to ElasticSearch and SearchGuard and having hard time following the guide provided. I suspect my continued issues are related to missing configuration requirements.
Thanks! Much appreciated!
On Wednesday, 16 November 2016 23:45:15 UTC+2, Jared wrote:
Thanks for the reply. To give some good feedback I will go through another trial run and keep some detailed notes. I will post back later this week.
On Tuesday, November 15, 2016 at 11:12:01 AM UTC-7, in...@search-guard.com wrote:
Not that we know of. However, could you share some information regarding what parts are hard to follow? We’d love to improve documentation, and we know there are still some rough edges. Any information from your side is greatly appreciated!
On Thursday, 10 November 2016 00:09:03 UTC+2, Jared wrote:
Does anyone have an alternate build document that could be sanitized and shared?
I am new to ElasticSearch and SearchGuard and having hard time following the guide provided. I suspect my continued issues are related to missing configuration requirements.
First hurdle, might be the easiest to clear up, please confirm that the following will result in java permission issues. I attempted to correct these java permission issues manually but with seemingly no success. So perhaps Oracle’s java is a soft requirement, certainly there doesn’t appear to be a supported route around using it?
Planning on switching java environments and posting more, this was not my original issue (I dont recall getting this error a couple weeks ago, probably simply missed it.)
SearchGuard Trial
Debian 8.6
IPv6 disabled on system
Java – Installed via default-jre and Debian repositories
“1.7.0_11” IcedTea 2.6.7
Elasticsearch version 2.4.1 installed via apt-get from the elastic repository
Sudo
–u elasticsearch plugin install -b com.floragunn/search-guard-ssl/2.4.1.16
Resulting in the following
Verifying
https://search.maven.org/remotecontent?filepath=com/floragunn/search-guard-ssl/2.4.1.16/search-guard-ssl-2.4.1.16.zip
checksums if available …
Downloading .DONE
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@ WARNING: plugin requires additional
permissions @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
java.lang.RuntimePermission
accessClassInPackage.sun.misc
java.lang.RuntimePermission
getClassLoader
java.lang.RuntimePermission
loadLibrary.*
java.lang.reflect.ReflectPermission suppressAccessChecks
java.security.SecurityPermission getProperty.ssl.KeyManagerFactory.algorithm
See
http://docs.oracle.com/javase/8/docs/technotes/guides/security/permissions.html
for descriptions of what these
permissions allow and the associated risks.
Installed
search-guard-ssl into /usr/share/elasticsearch/plugins/search-guard-ssl
sudo -u elasticsearch bin/plugin
install -b com.floragunn/search-guard-2/2.4.1.8
Verifying
https://search.maven.org/remotecontent?filepath=com/floragunn/search-guard-2/2.4.1.8/search-guard-2-2.4.1.8.zip
checksums if available …
Downloading .DONE
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@ WARNING: plugin requires additional
permissions @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
java.lang.RuntimePermission
getClassLoader
java.lang.RuntimePermission
setContextClassLoader
java.lang.RuntimePermission
shutdownHooks
javax.security.auth.AuthPermission
doAs
javax.security.auth.AuthPermission modifyPrivateCredentials
javax.security.auth.kerberos.ServicePermission * accept
See
http://docs.oracle.com/javase/8/docs/technotes/guides/security/permissions.html
for descriptions of what these
permissions allow and the associated risks.
Installed
search-guard-2 into /usr/share/elasticsearch/plugins/search-guard-2
On Tuesday, November 15, 2016 at 11:12:01 AM UTC-7, Search Guard wrote:
Not that we know of. However, could you share some information regarding what parts are hard to follow? We’d love to improve documentation, and we know there are still some rough edges. Any information from your side is greatly appreciated!
On Thursday, 10 November 2016 00:09:03 UTC+2, Jared wrote:
Does anyone have an alternate build document that could be sanitized and shared?
I am new to ElasticSearch and SearchGuard and having hard time following the guide provided. I suspect my continued issues are related to missing configuration requirements.
I just ran back into https://github.com/floragunncom/search-guard-ssl-docs/blob/master/installation.md which i found via google. This page makes it sound like the permissions will be put in place via some user input (pressing y?) and reviewing the errors below are these notices that the application HAS ALREADY been granted these permissions?
On Friday, November 18, 2016 at 9:03:14 AM UTC-7, Jared wrote:
First hurdle, might be the easiest to clear up, please confirm that the following will result in java permission issues. I attempted to correct these java permission issues manually but with seemingly no success. So perhaps Oracle’s java is a soft requirement, certainly there doesn’t appear to be a supported route around using it?
Planning on switching java environments and posting more, this was not my original issue (I dont recall getting this error a couple weeks ago, probably simply missed it.)
SearchGuard Trial
Debian 8.6
IPv6 disabled on system
Java – Installed via default-jre and Debian repositories
“1.7.0_11” IcedTea 2.6.7
Elasticsearch version 2.4.1 installed via apt-get from the elastic repository
Sudo
–u elasticsearch plugin install -b com.floragunn/search-guard-ssl/2.4.1.16
Resulting in the following
Verifying
https://search.maven.org/remotecontent?filepath=com/floragunn/search-guard-ssl/2.4.1.16/search-guard-ssl-2.4.1.16.zip
checksums if available …
Downloading .DONE
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@ WARNING: plugin requires additional
permissions @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
- java.lang.RuntimePermission
accessClassInPackage.sun.misc
- java.lang.RuntimePermission
getClassLoader
- java.lang.RuntimePermission
loadLibrary.*
java.lang.reflect.ReflectPermission suppressAccessChecks
java.security.SecurityPermission getProperty.ssl.KeyManagerFactory.algorithm
See
http://docs.oracle.com/javase/8/docs/technotes/guides/security/permissions.html
for descriptions of what these
permissions allow and the associated risks.
Installed
search-guard-ssl into /usr/share/elasticsearch/plugins/search-guard-ssl
sudo -u elasticsearch bin/plugin
install -b com.floragunn/search-guard-2/2.4.1.8
Verifying
https://search.maven.org/remotecontent?filepath=com/floragunn/search-guard-2/2.4.1.8/search-guard-2-2.4.1.8.zip
checksums if available …
Downloading .DONE
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@ WARNING: plugin requires additional
permissions @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
- java.lang.RuntimePermission
getClassLoader
- java.lang.RuntimePermission
setContextClassLoader
- java.lang.RuntimePermission
shutdownHooks
- javax.security.auth.AuthPermission
doAs
javax.security.auth.AuthPermission modifyPrivateCredentials
javax.security.auth.kerberos.ServicePermission * accept
See
http://docs.oracle.com/javase/8/docs/technotes/guides/security/permissions.html
for descriptions of what these
permissions allow and the associated risks.
Installed
search-guard-2 into /usr/share/elasticsearch/plugins/search-guard-2
On Tuesday, November 15, 2016 at 11:12:01 AM UTC-7, Search Guard wrote:
Not that we know of. However, could you share some information regarding what parts are hard to follow? We’d love to improve documentation, and we know there are still some rough edges. Any information from your side is greatly appreciated!
On Thursday, 10 November 2016 00:09:03 UTC+2, Jared wrote:
Does anyone have an alternate build document that could be sanitized and shared?
I am new to ElasticSearch and SearchGuard and having hard time following the guide provided. I suspect my continued issues are related to missing configuration requirements.
Ok, thanks, now I understand and will update the docs. The permission thingy changed back and forth between the various Elasticsearch versions, so it depends which version you use. But generally speaking, once you see:
Installed search-guard-ssl into /usr/share/elasticsearch/plugins/search-guard-ssl
Installed search-guard-2 into /usr/share/elasticsearch/plugins/search-guard-2
Everything is installed correctly.
Just as a side note, you write: “I just ran back into https://github.com/floragunncom/search-guard-ssl-docs/blob/master/installation.md which i found via google”
The SSL documentation is linked from the GitHub repository, and also from the main Search Guard docs. If this was not clear, where should we place additional links so users can find the docs more easily?
Thanks!
On Friday, 18 November 2016 18:45:43 UTC+1, Jared wrote:
I just ran back into https://github.com/floragunncom/search-guard-ssl-docs/blob/master/installation.md which i found via google. This page makes it sound like the permissions will be put in place via some user input (pressing y?) and reviewing the errors below are these notices that the application HAS ALREADY been granted these permissions?
On Friday, November 18, 2016 at 9:03:14 AM UTC-7, Jared wrote:
First hurdle, might be the easiest to clear up, please confirm that the following will result in java permission issues. I attempted to correct these java permission issues manually but with seemingly no success. So perhaps Oracle’s java is a soft requirement, certainly there doesn’t appear to be a supported route around using it?
Planning on switching java environments and posting more, this was not my original issue (I dont recall getting this error a couple weeks ago, probably simply missed it.)
SearchGuard Trial
Debian 8.6
IPv6 disabled on system
Java – Installed via default-jre and Debian repositories
“1.7.0_11” IcedTea 2.6.7
Elasticsearch version 2.4.1 installed via apt-get from the elastic repository
Sudo
–u elasticsearch plugin install -b com.floragunn/search-guard-ssl/2.4.1.16
Resulting in the following
Verifying
https://search.maven.org/remotecontent?filepath=com/floragunn/search-guard-ssl/2.4.1.16/search-guard-ssl-2.4.1.16.zip
checksums if available …
Downloading .DONE
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@ WARNING: plugin requires additional
permissions @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
- java.lang.RuntimePermission
accessClassInPackage.sun.misc
- java.lang.RuntimePermission
getClassLoader
- java.lang.RuntimePermission
loadLibrary.*
java.lang.reflect.ReflectPermission suppressAccessChecks
java.security.SecurityPermission getProperty.ssl.KeyManagerFactory.algorithm
See
http://docs.oracle.com/javase/8/docs/technotes/guides/security/permissions.html
for descriptions of what these
permissions allow and the associated risks.
Installed
search-guard-ssl into /usr/share/elasticsearch/plugins/search-guard-ssl
sudo -u elasticsearch bin/plugin
install -b com.floragunn/search-guard-2/2.4.1.8
Verifying
https://search.maven.org/remotecontent?filepath=com/floragunn/search-guard-2/2.4.1.8/search-guard-2-2.4.1.8.zip
checksums if available …
Downloading .DONE
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@ WARNING: plugin requires additional
permissions @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
- java.lang.RuntimePermission
getClassLoader
- java.lang.RuntimePermission
setContextClassLoader
- java.lang.RuntimePermission
shutdownHooks
- javax.security.auth.AuthPermission
doAs
javax.security.auth.AuthPermission modifyPrivateCredentials
javax.security.auth.kerberos.ServicePermission * accept
See
http://docs.oracle.com/javase/8/docs/technotes/guides/security/permissions.html
for descriptions of what these
permissions allow and the associated risks.
Installed
search-guard-2 into /usr/share/elasticsearch/plugins/search-guard-2
On Tuesday, November 15, 2016 at 11:12:01 AM UTC-7, Search Guard wrote:
Not that we know of. However, could you share some information regarding what parts are hard to follow? We’d love to improve documentation, and we know there are still some rough edges. Any information from your side is greatly appreciated!
On Thursday, 10 November 2016 00:09:03 UTC+2, Jared wrote:
Does anyone have an alternate build document that could be sanitized and shared?
I am new to ElasticSearch and SearchGuard and having hard time following the guide provided. I suspect my continued issues are related to missing configuration requirements.