ES ./elasticsearch-setup-passwords

最新推荐文章于 2025-05-24 15:26:15 发布
最新推荐文章于 2025-05-24 15:26:15 发布
阅读量5.2k 收藏 3
点赞数
CC 4.0 BY-SA版权
文章标签: elasticsearch
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.youkuaiyun.com/Lyncai/article/details/120159977
在尝试向集群添加ES节点并设置密码后遇到启动问题,错误提示为无法验证用户'elastic'。通过禁用xpack安全,删除.security-7索引,重新启用xpack并设置密码,解决了ES启动问题。然而,这导致Kibana启动失败,删除.kibana索引和数据节点后问题仍未解决。最终,通过删除数据节点解决问题。

摘要生成于 C知道 ,由 DeepSeek-R1 满血版支持, 前往体验 >

今天手欠 本来想往集群中添加一台ES,配置好后,手欠有运行了一次 setup password 然后 ES启动不来了 错误

Failed to authenticate user 'elastic' against http://172.16.xxx.xxx:9200/_security/_authenticate?pretty
Possible causes include:
 * The password for the 'elastic' user has already been changed on this cluster
 * Your elasticsearch node is running against a different keystore
   This tool used the keystore at /usr/local/elasticsearch-7.2.0/config/elasticsearch.keystore

ERROR: Failed to verify bootstrap password

参考 https://blog.youkuaiyun.com/weixin_43210350/article/details/109775605 是可以的

我的步骤是: 

1. 先将 xpack disable掉

xpack.security.enabled: true
xpack.security.authc.api_key.enabled: true

在elasticsearch.yml中将这两个值改成false

2. 这样重启ES后 可以进入 index查看  .security-7 删除这个index 

curl XDELETE 'http://localhost:9200/.security-7'

3. 将xpack enable后 重启ES

4. 再次运行 setup password ,密码会更新 这样重新生成新的密码

后来启动kibana时出现如下错误:

 

将.kibana 的三个index删除后 重启kibana 发现还有错误 

查询集群状态 发现是RED

 于是查看indices情况,删除RED的Indices 

 重启kibana 依然不行 

最后 删除nodes数据节点   ES101/data$ rm -rf nodes/

OK

Elasticsearch如何设置密码
邓邓子的博客
02-19 7260
kibana 账号:用来连接 elasticsearch 并与之通信。Kibana 服务器以该用户身份提交请求以访问集群监视 API 和 .kibana 索引,不能访问 index。logstash_system 账号:用户 Logstash 在 Elasticsearch 中存储监控信息时使用。elastic 账号:内置的超级用户,拥有 superuser 角色。访问 http://ip地址:9200/
linux安装elasticsearch-7.9.3
qq_49610136的博客
05-31 1822
elasticsearch-analysis-ik-7.9.3.zip上传至/app/TRT/elasticsearch/plugins/ik下并解压。5、修改elasticsearch.yml配置:vim /app/TRT/elasticsearch/config/elasticsearch.yml。1、安装包上传至安装目录/app/TRT/,解压:tar -zxvf elasticsearch-7.9.3-linux-x86_64.tar.gz。4、root用户无法启动es,需另创建用户启动。
Errorelasticsearch修改密码报错,elasticsearch-setup-passwords interactive
weixin_42367537的博客
07-01 9581
需要删除.security-7索引文件。把在第1步中的被注释的配置打开。之后就是按照提示输入密码。执行bin目录下的文件。
kibana alert 告警的配置
最新发布
weixin_42490799的博客
05-24 267
kibana 告警
[Elasticsearch] 给ES设置必须以用户名密码访问
qhl_904463348的博客
08-01 8084
2、进入es的bin目录,敲入命令:./elasticsearch-setup-passwords interactive。二、重启es后使用elasticsearch-setup-passwords进行密码设置。1、进入es的config目录中打开elasticsearch.yml。1、在完成修改elasticsearch.yml后,重启es;一、elasticsearch.yml中设置。
ES集群重新设置密码(第二次执行.elasticsearch-setup-passwords interactive报错)
segegefe的博客
04-18 2185
错误信息 当为es集群设置完一次密码之后,再次执行相同的命令 ./elasticsearch-setup-passwords interactive 报错: Failed to authenticate user 'elastic' against http://172.16.xxx.xxx:9200/_security/_authenticate?pretty Possible causes include: * The password for the 'elastic' user has alre
配置ElasticSearch集群环境账号密码
m0_67401660的博客
04-29 1641
1.修改主站点的elasticsearch.yml添加一下行: xpack.security.enabled: true 2.生成安全秘钥 切到ES安装目录,执行bin/elasticsearch-certutil ca -out config/elastic-certificates.p12 -pass “” 会在/home/elasticsearch-7.9.3/config目录生成elastic-certificates.p12 3.继续修改ES yml文件 添加以下四行: xpack.securit
最新版linux elasticsearch-7.9.3-linux-x86_64.tar.gz
10-26
./elasticsearch ``` 2. **配置**: - Elasticsearch的配置文件是`elasticsearch.yml`,位于解压后的目录中。你可以根据需求修改设置,例如,更改集群名称、节点名称、数据存储路径等。 - 配置网络和端口:默认...
[elk@master bin]$ ./elasticsearch-setup-passwords auto warning: ignoring JAVA_HOME=/opt/jdk/; using bundled JDK Connection failure to: http://192.168.241.150:9200/_security/_authenticate?pretty failed: 拒绝连接 ERROR: Failed to connect to elasticsearch at http://192.168.241.150:9200/_security/_authenticate?pretty. Is the URL correct and elasticsearch running?, with exit code 78 [1]+ 退出 1 nohup ./elasticsearch > /home/elasticsearch/log/elk2.log 2> 1 025-03-17T11:40:18,491][ERROR][o.e.b.Elasticsearch ] [dsports-node-1] fatal exception while booting Elasticsearch org.elasticsearch.ElasticsearchSecurityException: invalid SSL configuration for xpack.security.transport.ssl - server ssl configuration requires a key and certificate, but these have not been configured; you must set either [xpack.security.transport.ssl.keystore.path], or both [xpack.security.transport.ssl.key] and [xpack.security.transport.ssl.certificate] at org.elasticsearch.xcore@8.17.3/org.elasticsearch.xpack.core.ssl.SSLService.throwExceptionForMissingKeyMaterial(SSLService.java:686) at org.elasticsearch.xcore@8.17.3/org.elasticsearch.xpack.core.ssl.SSLService.validateServerConfiguration(SSLService.java:642) at org.elasticsearch.xcore@8.17.3/org.elasticsearch.xpack.core.ssl.SSLService.loadSslConfigurations(SSLService.java:627) at org.elasticsearch.xcore@8.17.3/org.elasticsearch.xpack.core.ssl.SSLService.<init>(SSLService.java:160) at org.elasticsearch.xcore@8.17.3/org.elasticsearch.xpack.core.XPackPlugin.createSSLService(XPackPlugin.java:496) at org.elasticsearch.xcore@8.17.3/org.elasticsearch.xpack.core.XPackPlugin.createComponents(XPackPlugin.java:325) at org.elasticsearch.server@8.17.3/org.elasticsearch.node.NodeConstruction.lambda$construct$16(NodeConstruction.java:894) at org.elasticsearch.server@8.17.3/org.elasticsearch.plugins.PluginsService.lambda$flatMap$1(PluginsService.java:254) at java.base/java.util.stream.ReferencePipeline$7$1FlatMap.accept(ReferencePipeline.jav
03-18
./bin/elasticsearch-certutil cert -out config/ssl-cert/elastic-certificates.p12 -pass "" ``` #### 4. 配置一致性检查 所有节点必须使用相同的: - 证书文件 - 密码配置 - SSL验证模式 #### 5. 启动验证 ```...
[2024-10-31T10:31:39,770][CRITICAL][o.e.d.x.s.s.SecurityStatusChangeListener] [node-1] [] The default behavior of disabling security on basic licenses is deprecated. In a later version of Elasticsearch, the value of [xpack.security.enabled] will default to "true" , regardless of the license level. See https://www.elastic.co/guide/en/elasticsearch/reference/7.17/security-minimal-setup.html to enable security, or explicitly disable security by setting [xpack.security.enabled] to false in elasticsearch.yml [2024-10-31T10:40:01,498][CRITICAL][o.e.d.a.s.IndicesOptions ] [node-1] [] [ignore_throttled] parameter is deprecated because frozen indices have been deprecated. Consider cold or frozen tiers in place of frozen indices. [2024-11-06T16:16:20,722][CRITICAL][o.e.d.a.s.IndicesOptions ] [node-1] [] [ignore_throttled] parameter is deprecated because frozen indices have been deprecated. Consider cold or frozen tiers in place of frozen indices. [2024-11-06T16:16:21,380][CRITICAL][o.e.d.x.s.s.SecurityStatusChangeListener] [node-1] [] The default behavior of disabling security on basic licenses is deprecated. In a later version of Elasticsearch, the value of [xpack.security.enabled] will default to "true" , regardless of the license level. See https://www.elastic.co/guide/en/elasticsearch/reference/7.17/security-minimal-setup.html to enable security, or explicitly disable security by setting [xpack.security.enabled] to false in elasticsearch.yml [2024-11-07T15:55:17,960][CRITICAL][o.e.d.x.s.s.SecurityStatusChangeListener] [node-1] [] The default behavior of disabling security on basic licenses is deprecated. In a later version of Elasticsearch, the value of [xpack.security.enabled] will default to "true" , regardless of the license level. See https://www.elastic.co/guide/en/elasticsearch/reference/7.17/security-minimal-setup.html to enable security, or explicitly disable security by setting [xpack.security.enabled] to false in elasticsearch.yml [2024-11-07T16:03:02,685][CRITICAL][o.e.d.a.s.IndicesOptions ] [node-1] [] [ignore_throttled] parameter is deprecated because frozen indices have been deprecated. Consider cold or frozen tiers in place of frozen indices. [2024-11-07T16:52:31,986][CRITICAL][o.e.d.x.s.s.SecurityStatusChangeListener] [node-1] [] The default behavior of disabling security on basic licenses is deprecated. In a later version of Elasticsearch, the value of [xpack.security.enabled] will default to "true" , regardless of the license level. See https://www.elastic.co/guide/en/elasticsearch/reference/7.17/security-minimal-setup.html to enable security, or explicitly disable security by setting [xpack.security.enabled] to false in elasticsearch.yml。这个是什么报错日志?和pds_dacfga_egebpl这个索引,ES的索引p经常变成UNASSIGNED未分配状态有没有什么关系?
03-29
好的,用户这次的问题是关于Elasticsearch的报错日志,以及这些日志是否和他们之前提到的索引pds_dacfga_egebpl频繁变成UNASSIGNED状态有关。我需要先仔细分析用户提供的日志内容,然后结合之前的问题来回答。 首先...
elasticsearch-migrate elasticsearch-sql-cli.bat [elastic@VM-4-10-centos bin]$ ./elasticsearch-setup-passwords interactive Connection failure to: http://10.0.4.10:9200/_xpack/security/_authenticate?pretty failed: Connection refused (Connection refused) ERROR: Failed to connect to elasticsearch at http://10.0.4.10:9200/_xpack/security/_authenticate?pretty. Is the URL correct and elasticsearch running?怎么解决
07-15
1. Elasticsearch 未启动:请确保 Elasticsearch 已成功启动并正在运行。您可以使用以下命令检查 Elasticsearch 进程是否在运行: ```shell ps aux | grep elasticsearch ``` 如果没有任何结果,请尝试启动 Elastic...
ElasticSearch7.9.0安装和开启登录密码
m0_71239320的博客
05-11 2970
一般elasticsearch是没有设置用户名、密码的,当牵扯到数据安全性问题时,我们一般会设置登录的用户名密码。
Elastic-Search设置密码
zhangningkid的博客
04-22 1346
保证 在config目录下生成文件elasticsearch.keystore,在elastic-search的bin目录下执行: elasticsearch-keystore create 在config目录下创建文件夹certs,并生成证书文件,在elastic-search的bin目录下执行(输入私钥key的时候可以直接回车): ./elasticsearch-certutil ca -out config/certs/elastic-certificates.p12 -pass 修.
elasticsearch集群添加安全认证功能(添加访问密码)
web15085181368的博客
03-25 3769
一、前言 在 6.8 之前免费版本并不包含安全认证功能,之后版本有开放一些基础认证功能;为了防止各种事故,一般都会设置es集群的访问密码;但是在我尝试设置访问密码的时候发现,设置访问密码的前提必须要设置集群证书,不然es启动报错。 关于设置证书的作用,简单来说就是在集群内定各个es节点都必须持有相同的证书,如果某个es的恶意节点想加入你的集群,那么它也必须有要相同的证书,这就可以防止别人恶意创建节点加入你的集群了。 本例子使用elasticsearch v7.2.0为例 二、具体步骤 1、编辑elastic
failed to authenticate user [elastic] 问题解决
热门推荐
mingtingshi的博客
11-30 2万+
进入elasitcsearch的config目录,找到elasticsearch.yml配置文件,vim打开,注释掉下面两项配置。)可以将es密码重新设置,使其恢复正常,但是我是单节点部署的,数据最后有点问题,最后删除索引了,重建索引。用netstat -ntlp 查询es启动进程,用kill 744449 干掉对应的es进程。在bin目录下执行如下命令,设置es密码,设置完成后即可正常使用带用户名和密码的es。,配置注释后,es就不需要密码也可以登录。***重点生成新的证书。***重点生成新的证书。
elasticsearch-setup-passwords interactive
qq 117791303
04-12 2875
elasticsearch-setup-passwords interactive [root@node-zwf ~]# su elasticsearch [elasticsearch@node-zwf root]$ cd /home/elasticsearch/elasticsearch-7.8.0/ [elasticsearch@node-zwf elasticsearch-7.8.0]$ elasticsearch-setup-passwords interactive ba...
ElasticSearch实战系列十一: ElasticSearch错误问题解决方案
虚无境的博客
05-24 5355
1,max virtual memory areas vm.max_map_count [65530] is too low, increase to at least [262144] 原因: 内存限制太小了! 解决办法: 修改最大内存限制,参考Linux环境配置的第一条! 2,max number of threads [2048] for user [elastic] is too low, increase to at least [4096] 原因: 线程数限制太少了! 解决办法: 修改最大线程数
es】解决es报错failed to authenticate user [elastic]
weixin_42914989的博客
02-06 8501
某天使用接口查询es数据时出现报错,没有返回数据。想到是测试环境的es因为没内存又挂了,于是上服务器重启服务。但是重启后等待一段时间再次查询es,还是同样报错,显示连接拒接。于是lsof -i:9200查看端口,端口没起来。查看日志,显示。
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值