Using security plugin without SSL for authentication only


Is it possbile to use security plugin without SSL for authentication from some simple (internal?) user database only?


You can open HTTP to Kibana URL and authenticate.

ES won’t let you to authenticate with HTTP as security plugin requires SSL certificates.

Why do you want to disable SSL?

See disable TLS for Transport, enable for Rest · Issue #37 · opendistro-for-elasticsearch/security · GitHub

As for me, no need for SSL between Elasticsearch and Kibana in all cases, using security plugin for authentication only is good case too

Transport communication between the nodes has to work with SSL certs as per blog (ports 9300 - 9400). Found that you can disable SSL on ES HTTP (opendistro_security.ssl.http.enabled: false).

I’m not about Elasticsearch nodes, I’m about communication between Elasticsearch and Kibana