You might want to temporarily disable the Security plugin to make testing or internal usage more straightforward. To disable the plugin, add the following line in
A more permanent option is to remove the Security plugin entirely. Delete the
plugins/security folder on all nodes, and delete the
opendistro_security configuration entries from
Disabling or removing the plugin exposes the
security configuration index. If the index contains sensitive information, be sure to protect it through some other means. If you no longer need the index, delete it.
Remove Kibana plugin
The Security plugin is actually two plugins: one for Elasticsearch and one for Kibana. You can use the Elasticsearch plugin independently, but the Kibana plugin depends on a secured Elasticsearch cluster.
If you disable the Security plugin in
elasticsearch.yml (or delete the plugin entirely) and still want to use Kibana, you must remove the corresponding Kibana plugin.
After the removal of any plugin, Kibana performs an “optimize” operation the next time you start it. This operation takes several minutes even on fast machines, so be patient.
- Remove all
sudo /usr/share/kibana/bin/kibana-plugin remove opendistro_security.
sudo systemctl restart kibana.service
Create a new
FROM amazon/opendistro-for-elasticsearch-kibana:0.8.0 RUN /usr/share/kibana/bin/kibana-plugin remove opendistro_security
To build the new Docker image, run:
docker build --tag=kibana-no-security .
- Remove all