Home Explore Help
Sign In
lqb
/
elasticsearch
mirror of https://gitee.com/mirrors/elasticsearch.git
1
0
Fork 0
Files Issues 0 Wiki
Tree: cb37989bd9
Branches Tags
elasticsearch
/
docs
/
reference
/
commands
/
create-enrollment-token.asciidoc

create-enrollment-token.asciidoc 2.0 KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859 
  1. [roles="xpack"]
    2. 

  2. [[create-enrollment-token]]
    3. 

  3. 

  4. == elasticsearch-create-enrollment-token
    5. 

  5. 

  6. The `elasticsearch-create-enrollment-token` command creates enrollment tokens for
    7. 

  7. {es} nodes and {kib} instances.
    8. 

  8. 

  9. [discrete]
    10. 

  10. === Synopsis
    11. 

  11. 

  12. [source,shell]
    13. 

  13. ----
    14. 

  14. bin/elasticsearch-create-enrollment-token
    15. 

  15. [-f, --force] [-h, --help] [-E <KeyValuePair>] [-s, --scope]
    16. 

  16. ----
    17. 

  17. 

  18. [discrete]
    19. 

  19. === Description
    20. 

  20. 

  21. Use this command to create enrollment tokens, which you can use to enroll new
    22. 

  22. {es} nodes to an existing cluster or configure {kib} instances to communicate
    23. 

  23. with an existing {es} cluster that has security features enabled.
    24. 

  24. The command generates (and subsequently removes) a temporary user in the
    25. 

  25. <<file-realm,file realm>> to run the request that creates enrollment tokens.
    26. 

  26. IMPORTANT: You cannot use this tool if the file realm is disabled in your 
    27. 

  27. `elasticsearch.yml` file.
    28. 

  28. 

  29. This command uses an HTTP connection to connect to the cluster and run the user
    30. 

  30. management requests. The command automatically attempts to establish the connection
    31. 

  31. over HTTPS by using the `xpack.security.http.ssl` settings in
    32. 

  32. the `elasticsearch.yml` file. If you do not use the default configuration directory,
    33. 

  33. ensure that the `ES_PATH_CONF` environment variable returns the
    34. 

  34. correct path before you run the `elasticsearch-create-enrollment-token` command. You can
    35. 

  35. override settings in your `elasticsearch.yml` file by using the `-E` command
    36. 

  36. option. For more information about debugging connection failures, see
    37. 

  37. <<trb-security-setup>>.
    38. 

  38. 

  39. [discrete]
    40. 

  40. [[create-enrollment-token-parameters]]
    41. 

  41. === Parameters
    42. 

  42. 

  43. `-E <KeyValuePair>`:: Configures a standard {es} or {xpack} setting.
    44. 

  44. 

  45. `-f, --force`:: Forces the command to run against an unhealthy cluster. 
    46. 

  46. 

  47. `-h, --help`:: Returns all of the command parameters.
    48. 

  48. 

  49. `-s, --scope`:: Specifies the scope of the generated token. Supported values are `node` and `kibana`.
    50. 

  50. 

  51. [discrete]
    52. 

  52. === Examples
    53. 

  53. 

  54. The following command creates an enrollment token for enrolling an {es} node into a cluster:
    55. 

  55. 

  56. [source,shell]
    57. 

  57. ----
    58. 

  58. bin/elasticsearch-create-enrollment-token -s node
    59. 

  59. ----
    60.