First hurdle, might be the easiest to clear up, please confirm that the following will result in java permission issues. I attempted to correct these java permission issues manually but with seemingly no success. So perhaps Oracle’s java is a soft requirement, certainly there doesn’t appear to be a supported route around using it?
Planning on switching java environments and posting more, this was not my original issue (I dont recall getting this error a couple weeks ago, probably simply missed it.)
SearchGuard Trial
Debian 8.6
IPv6 disabled on system
Java – Installed via default-jre and Debian repositories
“1.7.0_11” IcedTea 2.6.7
Elasticsearch version 2.4.1 installed via apt-get from the elastic repository
Sudo
–u elasticsearch plugin install -b com.floragunn/search-guard-ssl/2.4.1.16
Resulting in the following
Verifying
https://search.maven.org/remotecontent?filepath=com/floragunn/search-guard-ssl/2.4.1.16/search-guard-ssl-2.4.1.16.zip
checksums if available …
Downloading .DONE
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@ WARNING: plugin requires additional
permissions @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
-
java.lang.RuntimePermission
accessClassInPackage.sun.misc
-
java.lang.RuntimePermission
getClassLoader
-
java.lang.RuntimePermission
loadLibrary.*
···
java.lang.reflect.ReflectPermission suppressAccessChecks
java.security.SecurityPermission getProperty.ssl.KeyManagerFactory.algorithm
See
http://docs.oracle.com/javase/8/docs/technotes/guides/security/permissions.html
for descriptions of what these
permissions allow and the associated risks.
Installed
search-guard-ssl into /usr/share/elasticsearch/plugins/search-guard-ssl
sudo -u elasticsearch bin/plugin
install -b com.floragunn/search-guard-2/2.4.1.8
Verifying
https://search.maven.org/remotecontent?filepath=com/floragunn/search-guard-2/2.4.1.8/search-guard-2-2.4.1.8.zip
checksums if available …
Downloading .DONE
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@ WARNING: plugin requires additional
permissions @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
-
java.lang.RuntimePermission
getClassLoader
-
java.lang.RuntimePermission
setContextClassLoader
-
java.lang.RuntimePermission
shutdownHooks
-
javax.security.auth.AuthPermission
doAs
javax.security.auth.AuthPermission modifyPrivateCredentials
javax.security.auth.kerberos.ServicePermission * accept
See
http://docs.oracle.com/javase/8/docs/technotes/guides/security/permissions.html
for descriptions of what these
permissions allow and the associated risks.
Installed
search-guard-2 into /usr/share/elasticsearch/plugins/search-guard-2
On Tuesday, November 15, 2016 at 11:12:01 AM UTC-7, Search Guard wrote:
Not that we know of. However, could you share some information regarding what parts are hard to follow? We’d love to improve documentation, and we know there are still some rough edges. Any information from your side is greatly appreciated!
On Thursday, 10 November 2016 00:09:03 UTC+2, Jared wrote:
Does anyone have an alternate build document that could be sanitized and shared?
I am new to ElasticSearch and SearchGuard and having hard time following the guide provided. I suspect my continued issues are related to missing configuration requirements.