plugins/search-guard-2/tools/sgadmin.sh -cd plugins/search-guard-2/sgconfig/ -ks plugins/search-guard-2/sgconfig/keystore.jks -ts
plugins/search-guard-2/sgconfig/truststore.jks -nhnv
``
Hello,
I’m trying to deploy SG in my Elasticsearch cluster, so I followed the doc but I have a problem on this step and get the following error :
Connect to localhost:9300
Exception in thread “main” ElasticsearchException[Unable to read /usr/share/elasticsearch/plugins/search-guard-2/sgconfig/keystore.jks (/usr/share/elasticsearch/plugins/search-guard-2/sgconfig/keystore.jks) Please make sure this files exists and is readable regarding to permissions]
at com.floragunn.searchguard.ssl.SearchGuardKeyStore.checkStorePath(SearchGuardKeyStore.java:443)
at com.floragunn.searchguard.ssl.SearchGuardKeyStore.initSSLConfig(SearchGuardKeyStore.java:173)
at com.floragunn.searchguard.ssl.SearchGuardKeyStore.(SearchGuardKeyStore.java:132)
at com.floragunn.searchguard.ssl.SearchGuardSSLModule.(SearchGuardSSLModule.java:29)
at com.floragunn.searchguard.ssl.SearchGuardSSLPlugin.nodeModules(SearchGuardSSLPlugin.java:116)
at org.elasticsearch.plugins.PluginsService.nodeModules(PluginsService.java:263)
at org.elasticsearch.client.transport.TransportClient$Builder.build(TransportClient.java:139)
at com.floragunn.searchguard.tools.SearchGuardAdmin.main(SearchGuardAdmin.java:134)
In /usr/share/elasticsearch/plugins/search-guard-2/sgconfig I have some .jks files but no “keystore,jks” !
-rw-r–r-- 1 root root 386 Apr 20 14:25 elasticsearch.yml.example
-rw-r–r-- 1 root root 4423 Apr 20 14:25 kirk-keystore.jks
-rw-r–r-- 1 root root 4480 Apr 20 14:25 node-0-keystore.jks
-rw-r–r-- 1 root root 4479 Apr 20 14:25 node-1-keystore.jks
-rw-r–r-- 1 root root 4483 Apr 20 14:25 node-2-keystore.jks
-rw-r–r-- 1 root root 878 Apr 20 14:25 sg_action_groups.yml
-rw-r–r-- 1 root root 1313 Apr 20 14:25 sg_config.yml
-rw-r–r-- 1 root root 1069 Apr 20 14:25 sg_internal_users.yml
-rw-r–r-- 1 root root 666 Apr 20 14:25 sg_roles_mapping.yml
-rw-r–r-- 1 root root 3406 Apr 20 14:25 sg_roles.yml
-rw-r–r-- 1 root root 4425 Apr 20 14:25 spock-keystore.jks
-rw-r–r-- 1 root root 1096 Apr 20 14:25 truststore.jks
Where I’m supposed to get this file ?
Anyway it is possible to implement Search-Guard without search guard SSL?