installed ver. 2.2.0
when i start the elastic, the elastic start normally
but Search guard not inicialize
curl -XGET localhost:9200
Search Guard not initialized (SG11)
then i execute sgadmin and get this:
./sgadmin.sh -cd /usr/share/elasticsearch/plugins/search-guard-2/sgconfig -ks /usr/share/elasticsearch/plugins/search-guard-ssl/example-pki-scripts/kirk-keystore.jks -ts /usr/share/elasticsearch/plugins/search-guard-ssl/example-pki-scripts/truststore.jks -nhnv -tspass tspass -kspass kspass
Connect to localhost:9300
[09:54:40,345][WARN ] org.elasticsearch.com.floragunn.searchguard.ssl.SearchGuardKeyStore - AES 256 not supported, max key length for AES is 128. To enable AES 256 install ‘Java Cryptography Extension (JCE) Unlimited Strength Jurisdiction Policy Files’
Exception in thread “main” NoNodeAvailableException[None of the configured nodes are available: [{#transport#-1}{127.0.0.1}{localhost/127.0.0.1:9300}]]
at org.elasticsearch.client.transport.TransportClientNodesService.ensureNodesAreAvailable(TransportClientNodesService.java:290)
at org.elasticsearch.client.transport.TransportClientNodesService.execute(TransportClientNodesService.java:207)
at org.elasticsearch.client.transport.support.TransportProxyClient.execute(TransportProxyClient.java:55)
at org.elasticsearch.client.transport.TransportClient.doExecute(TransportClient.java:286)
at org.elasticsearch.client.support.AbstractClient.execute(AbstractClient.java:351)
at org.elasticsearch.client.support.AbstractClient.execute(AbstractClient.java:340)
at org.elasticsearch.client.support.AbstractClient$ClusterAdmin.execute(AbstractClient.java:840)
at org.elasticsearch.client.support.AbstractClient$ClusterAdmin.health(AbstractClient.java:860)
at com.floragunn.searchguard.tools.SearchGuardAdmin.main(SearchGuardAdmin.java:144)
any ideas?
what happened?
Here the log of Elastic:
[2016-05-18 09:54:09,487][INFO ][node ] [Hildegarde] stopping …
[2016-05-18 09:54:09,505][INFO ][node ] [Hildegarde] stopped
[2016-05-18 09:54:09,506][INFO ][node ] [Hildegarde] closing …
[2016-05-18 09:54:09,511][INFO ][node ] [Hildegarde] closed
[2016-05-18 09:54:10,270][WARN ][bootstrap ] unable to install syscall filter: seccomp unavailable: requires kernel 3.5+ with CONFIG_SECCOMP and CONFIG_SECCOMP_FILTER compiled in
[2016-05-18 09:54:10,596][INFO ][node ] [Mad Jim Jaspers] version[2.2.0], pid[20043], build[8ff36d1/2016-01-27T13:32:39Z]
[2016-05-18 09:54:10,596][INFO ][node ] [Mad Jim Jaspers] initializing …
[2016-05-18 09:54:11,523][INFO ][plugins ] [Mad Jim Jaspers] modules [lang-expression, lang-groovy], plugins [search-guard-ssl, search-guard-2], sites
[2016-05-18 09:54:11,553][INFO ][env ] [Mad Jim Jaspers] using [1] data paths, mounts [[/ (/dev/md1)]], net usable_space [1.2tb], net total_space [1.7tb], spins? [possibly], types [ext4]
[2016-05-18 09:54:11,553][INFO ][env ] [Mad Jim Jaspers] heap size [989.8mb], compressed ordinary object pointers [true]
[2016-05-18 09:54:11,618][INFO ][com.floragunn.searchguard.ssl.SearchGuardKeyStore] Open SSL not available because of java.lang.UnsatisfiedLinkError: /tmp/libnetty-tcnative3908967867615620475.so: libssl.so.1.0.0: cannot open shared object file: No such file or directory
[2016-05-18 09:54:11,947][WARN ][com.floragunn.searchguard.ssl.SearchGuardKeyStore] AES 256 not supported, max key length for AES is 128. To enable AES 256 install ‘Java Cryptography Extension (JCE) Unlimited Strength Jurisdiction Policy Files’
[2016-05-18 09:54:11,948][INFO ][com.floragunn.searchguard.ssl.SearchGuardKeyStore] sslTransportClientProvider:JDK with ciphers [TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256, TLS_DHE_RSA_WITH_AES_128_CBC_SHA256, TLS_DHE_DSS_WITH_AES_128_CBC_SHA256, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_RSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256, TLS_DHE_RSA_WITH_AES_128_GCM_SHA256, TLS_DHE_DSS_WITH_AES_128_GCM_SHA256]
[2016-05-18 09:54:11,948][INFO ][com.floragunn.searchguard.ssl.SearchGuardKeyStore] sslTransportServerProvider:JDK with ciphers [TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256, TLS_DHE_RSA_WITH_AES_128_CBC_SHA256, TLS_DHE_DSS_WITH_AES_128_CBC_SHA256, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_RSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256, TLS_DHE_RSA_WITH_AES_128_GCM_SHA256, TLS_DHE_DSS_WITH_AES_128_GCM_SHA256]
[2016-05-18 09:54:11,948][INFO ][com.floragunn.searchguard.ssl.SearchGuardKeyStore] sslHTTPProvider:null with ciphers
[2016-05-18 09:54:12,373][INFO ][transport ] [Mad Jim Jaspers] Using [com.floragunn.searchguard.transport.SearchGuardTransportService] as transport service, overridden by [search-guard2]
[2016-05-18 09:54:12,373][INFO ][transport ] [Mad Jim Jaspers] Using [com.floragunn.searchguard.ssl.transport.SearchGuardSSLNettyTransport] as transport, overridden by [search-guard-ssl]
[2016-05-18 09:54:14,175][INFO ][node ] [Mad Jim Jaspers] initialized
[2016-05-18 09:54:14,176][INFO ][node ] [Mad Jim Jaspers] starting …
[2016-05-18 09:54:14,262][INFO ][com.floragunn.searchguard.transport.SearchGuardTransportService] [Mad Jim Jaspers] publish_address {127.0.0.1:9300}, bound_addresses {127.0.0.1:9300}
[2016-05-18 09:54:14,275][INFO ][discovery ] [Mad Jim Jaspers] elasticsearch/v1JRbYwESGuxU2o-r9eMhg
[2016-05-18 09:54:14,277][DEBUG][action.admin.cluster.health] [Mad Jim Jaspers] no known master node, scheduling a retry
[2016-05-18 09:54:18,317][INFO ][cluster.service ] [Mad Jim Jaspers] new_master {Mad Jim Jaspers}{v1JRbYwESGuxU2o-r9eMhg}{127.0.0.1}{127.0.0.1:9300}, reason: zen-disco-join(elected_as_master, [0] joins received)
[2016-05-18 09:54:18,335][INFO ][http ] [Mad Jim Jaspers] publish_address {127.0.0.1:9200}, bound_addresses {127.0.0.1:9200}
[2016-05-18 09:54:18,335][INFO ][node ] [Mad Jim Jaspers] started
[2016-05-18 09:54:18,504][INFO ][gateway ] [Mad Jim Jaspers] recovered [0] indices into cluster_state
Thanks for all!
Regards!