I’m trying to retrieve my security index configurations to move to another server.
I used the tool securityadmin.sh and I receive this error after waiting for a while.
./securityadmin.sh -cacert /etc/elasticsearch/root-ca.pem -cert /etc/elasticsearch/kirk.pem -key /etc/elasticsearch/kirk-key.pem -r -icl -nhnv Open Distro Security Admin v6 Will connect to localhost:9300 ... done Elasticsearch Version: 6.5.4 Open Distro Security Version: 0.7.0.0 Connected as CN=kirk,OU=client,O=client,L=test,C=de Contacting elasticsearch cluster 'elasticsearch' and wait for YELLOW clusterstate ... ERR: Timed out while waiting for a green or yellow cluster state. * Try running securityadmin.sh with -icl (but no -cl) and -nhnv (If that works you need to check your clustername as well as hostnames in your TLS certificates) * Make also sure that your keystore or PEM certificate is a client certificate (not a node certificate) and configured properly in elasticsearch.yml * If this is not working, try running securityadmin.sh with --diagnose and see diagnose trace log file) * Add --accept-red-cluster to allow securityadmin to operate on a red cluster.
I did read the search guard documentation about the tool and researched in their google forum but still no way to get past through this error.
So I tried to find another way to have backups, I made some modifications to the yml config files and restarted the elasticsearch and kibana services.
Nothing changed, no impact on the users, roles or mappings.
I did try the security admin tool to reload the configuration and it said every thing went okay but no effect.
What am I doing wrong?
Hope I made my explanations clear enough. Thank you for all the work, it’s really nice.
EDIT : My elastic was in a red state so the tool wasn’t working. Not enough disk space.
If your cluster state is red, you can still execute sgadmin, but you need to add the `-arc/--accept-red-cluster` switch
I will try to do my restore. Keep you updated