I am trying to map a process to install a new ElasticSearch cluster with SearchGuard already installed and configured with an admin user.
First, I believe I need to make sure to generate the search_guard.key and distribute it to all the nodes
Second, I believe I need to have the searchguard/ac/ac document with the ACLs already loaded somehow into ElasticSearch before SearchGuard is enabled. Is there a way to do this without having to start up ElasticSearch with SearchGuard disabled, loading the document, and restarting with it enabled?
Is there anything else I would need to think about?