Home Explore Help
Sign In
lqb
/
elasticsearch
mirror of https://gitee.com/mirrors/elasticsearch.git
1
0
Fork 0
Files Issues 0 Wiki
Tree: 6b98d77d57
Branches Tags
elasticsearch
/
docs
/
reference
/
security
/
index.asciidoc

index.asciidoc 5.0 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122 
  1. [[secure-cluster]]
    2. 

  2. = Secure the {stack}
    3. 

  3. 

  4. [partintro]
    5. 

  5. --
    6. 

  6. 

  7. The {stack} is comprised of many moving parts. There are the {es}
    8. 

  8. nodes that form the cluster, plus {ls} instances, {kib} instances, {beats}
    9. 

  9. agents, and clients all communicating with the cluster. To keep your cluster
    10. 

  10. safe, adhere to the <<es-security-principles,{es} security principles>>.
    11. 

  11. 

  12. The first principle is to run {es} with security enabled. Configuring security
    13. 

  13. can be complicated, so we made it easy to
    14. 

  14. <<configuring-stack-security,start the {stack} with security enabled and configured>>.
    15. 

  15. For any new clusters, just start {es} to automatically enable password protection, 
    16. 

  16. secure internode communication with Transport Layer Security (TLS), and encrypt
    17. 

  17. connections between {es} and {kib}.
    18. 

  18. 

  19. If you have an existing, unsecured cluster (or prefer to manage security on your
    20. 

  20. own), you can
    21. 

  21. <<manually-configure-security,manually enable and configure security>> to secure
    22. 

  22. {es} clusters and any clients that communicate with your clusters. You can also
    23. 

  23. implement additional security measures, such as role-based access control, IP
    24. 

  24. filtering, and auditing.
    25. 

  25. 

  26. Enabling security protects {es} clusters by:
    27. 

  27. 

  28. * <<preventing-unauthorized-access, Preventing unauthorized access>>
    29. 

  29.   with password protection, role-based access control, and IP filtering.
    30. 

  30. * <<preserving-data-integrity, Preserving the integrity of your data>>
    31. 

  31.   with SSL/TLS encryption.
    32. 

  32. * <<maintaining-audit-trail, Maintaining an audit trail>>
    33. 

  33.   so you know who's doing what to your cluster and the data it stores.
    34. 

  34. 

  35. TIP: If you plan to run {es} in a Federal Information Processing Standard (FIPS)
    36. 

  36. 140-2 enabled JVM, see <<fips-140-compliance>>.
    37. 

  37. 

  38. [discrete]
    39. 

  39. [[preventing-unauthorized-access]]
    40. 

  40. == Preventing unauthorized access
    41. 

  41. 

  42. To prevent unauthorized access to your {es} cluster, you need a way to
    43. 

  43. _authenticate_ users in order to validate that a user is who they claim to be. For
    44. 

  44. example, making sure that only the person named _Kelsey Andorra_ can sign
    45. 

  45. in as the user `kandorra`. The {es-security-features} provide a standalone
    46. 

  46. authentication mechanism that enables you to quickly password-protect your
    47. 

  47. cluster.
    48. 

  48. 

  49. If you're already using LDAP, Active Directory, or PKI to manage users in your
    50. 

  50. organization, the {security-features} integrate with those systems to perform
    51. 

  51. user authentication.
    52. 

  52. 

  53. In many cases, authenticating users isn't enough. You also need a way to
    54. 

  54. control what data users can access and what tasks they can perform. By enabling
    55. 

  55. the {es-security-features}, you can _authorize_ users by assigning access
    56. 

  56. privileges to roles and assigning those roles to users. Using this role-based
    57. 

  57. access control mechanism (RBAC), you can limit the user `kandorra` to only
    58. 

  58. perform read operations on the `events` index restrict access to all other
    59. 

  59. indices.
    60. 

  60. 

  61. The {security-features} also enable you to restrict the nodes and clients that
    62. 

  62. can connect to the cluster based on <<ip-filtering,IP filters>>. You can
    63. 

  63. block and allow specific IP addresses, subnets, or DNS domains to
    64. 

  64. control network-level access to a cluster.
    65. 

  65. 

  66. See <<setting-up-authentication,User authentication>> and
    67. 

  67. <<authorization,User authorization>>.
    68. 

  68. 

  69. [discrete]
    70. 

  70. [[preserving-data-integrity]]
    71. 

  71. == Preserving data integrity and confidentiality
    72. 

  72. 

  73. A critical part of security is keeping confidential data secured.
    74. 

  74. {es} has built-in protections against accidental data loss and
    75. 

  75. corruption. However, there's nothing to stop deliberate tampering or data
    76. 

  76. interception. The {stack-security-features} use TLS to preserve the _integrity_
    77. 

  77. of your data against tampering, while also providing _confidentiality_ by
    78. 

  78. encrypting communications to, from, and within the cluster. For even	greater
    79. 

  79. protection, you can increase the <<ciphers,encryption strength>>.
    80. 

  80. 

  81. See <<configuring-stack-security,Configure security for the {stack}>>.
    82. 

  82. 

  83. [discrete]
    84. 

  84. [[maintaining-audit-trail]]
    85. 

  85. == Maintaining an audit trail
    86. 

  86. 

  87. Keeping a system secure takes vigilance. By using {stack-security-features} to
    88. 

  88. maintain an audit trail, you can easily see who is accessing your cluster and
    89. 

  89. what they're doing. You can configure the audit level, which accounts for the
    90. 

  90. type of events that are logged. These events include failed authentication
    91. 

  91. attempts, user access denied, node connection denied, and more. By analyzing
    92. 

  92. access patterns and failed attempts to access your cluster, you can gain
    93. 

  93. insights into attempted attacks and data breaches. Keeping an auditable log of
    94. 

  94. the activity in your cluster can also help diagnose operational issues.
    95. 

  95. 

  96. See <<enable-audit-logging,Enable audit logging>>.
    97. 

  97. 

  98. --
    99. 

  99. 

  100. include::es-security-principles.asciidoc[]
    101. 

  101. 

  102. include::configuring-stack-security.asciidoc[]
    103. 

  103. 

  104. include::security-manual-configuration.asciidoc[]
    105. 

  105. 

  106. include::securing-communications/update-tls-certificates.asciidoc[]
    107. 

  107. 

  108. include::authentication/overview.asciidoc[]
    109. 

  109. 

  110. include::authorization/overview.asciidoc[]
    111. 

  111. 

  112. include::auditing/index.asciidoc[]
    113. 

  113. 

  114. include::using-ip-filtering.asciidoc[]
    115. 

  115. 

  116. include::ccs-clients-integrations/index.asciidoc[]
    117. 

  117. 

  118. include::operator-privileges/index.asciidoc[]
    119. 

  119. 

  120. include::troubleshooting.asciidoc[]
    121. 

  121. 

  122. include::limitations.asciidoc[]
    123.