Home Explore Help
Sign In
lqb
/
elasticsearch
mirror of https://gitee.com/mirrors/elasticsearch.git
1
0
Fork 0
Files Issues 0 Wiki
Tree: ec9437832d
Branches Tags
elasticsearch
/
docs
/
reference
/
slm
/
apis
/
index.asciidoc

index.asciidoc 2.3 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172 
  1. [role="xpack"]
    2. 

  2. [testenv="basic"]
    3. 

  3. [[snapshot-lifecycle-management]]
    4. 

  4. == Manage the snapshot lifecycle
    5. 

  5. 

  6. You can set up snapshot lifecycle policies to automate the timing, frequency, and retention of snapshots. 
    7. 

  7. Snapshot policies can apply to multiple indices. 
    8. 

  8. 

  9. The snapshot lifecycle management (SLM) <<snapshot-lifecycle-management-api, CRUD APIs>> provide
    10. 

  10. the building blocks for the snapshot policy features that are part of the Management application in {kib}. 
    11. 

  11. The  Snapshot and Restore UI makes it easy to set up policies, register snapshot repositories, 
    12. 

  12. view and manage snapshots, and restore indices.
    13. 

  13. 

  14. You can stop and restart SLM to temporarily pause automatic backups while performing
    15. 

  15. upgrades or other maintenance.
    16. 

  16. To disable SLM entirely, set `xpack.slm.enabled` to `false` in `elasticsearch.yml`.
    17. 

  17. 

  18. [float]
    19. 

  19. [[slm-and-security]]
    20. 

  20. === Security and SLM
    21. 

  21. 

  22. Two built-in cluster privileges control access to the SLM actions when 
    23. 

  23. {es} {security-features} are enabled:
    24. 

  24. 

  25. `manage_slm`:: Allows a user to perform all SLM actions, including creating and updating policies 
    26. 

  26. and starting and stopping SLM. 
    27. 

  27. 

  28. `read_slm`:: Allows a user to perform all read-only SLM actions, 
    29. 

  29. such as getting policies and checking the SLM status.
    30. 

  30. 

  31. `cluster:admin/snapshot/*`:: Allows a user to take and delete snapshots of any
    32. 

  32. index, whether or not they have access to that index. 
    33. 

  33. 

  34. For example, the following request configures an `slm-admin` role that grants the privileges
    35. 

  35. necessary for administering SLM.
    36. 

  36. 

  37. [source,console]
    38. 

  38. -----------------------------------
    39. 

  39. POST /_security/role/slm-admin
    40. 

  40. {
    41. 

  41.   "cluster": ["manage_slm", "cluster:admin/snapshot/*"],
    42. 

  42.   "indices": [
    43. 

  43.     {
    44. 

  44.       "names": [".slm-history-*"],
    45. 

  45.       "privileges": ["all"]
    46. 

  46.     }
    47. 

  47.   ]
    48. 

  48. }
    49. 

  49. -----------------------------------
    50. 

  50. // TEST[skip:security is not enabled here]
    51. 

  51. 

  52. Or, for a read-only role that can retrieve policies (but not update, execute, or
    53. 

  53. delete them), as well as only view the history index:
    54. 

  54. 

  55. [source,console]
    56. 

  56. -----------------------------------
    57. 

  57. POST /_security/role/slm-read-only
    58. 

  58. {
    59. 

  59.   "cluster": ["read_slm"],
    60. 

  60.   "indices": [
    61. 

  61.     {
    62. 

  62.       "names": [".slm-history-*"],
    63. 

  63.       "privileges": ["read"]
    64. 

  64.     }
    65. 

  65.   ]
    66. 

  66. }
    67. 

  67. -----------------------------------
    68. 

  68. // TEST[skip:security is not enabled here]
    69. 

  69. 

  70. include::getting-started-slm.asciidoc[]
    71. 

  71. 

  72. include::slm-retention.asciidoc[]
    73.