A lightweight Elasticsearch and Kibana security plugin providing authentication, authorization, encryption, and auditing with minimal overhead.
Free Elasticsearch security plugin and Kibana security plugin: super-easy Kibana multi-tenancy, Encryption, Authentication, Authorization, Auditing
This tool is used to secure Elasticsearch clusters and Kibana instances by enforcing fine-grained access control rules directly within Elasticsearch, eliminating the need for external proxies. It is ideal for administrators who want to safely expose Elasticsearch HTTP APIs to public or multi-tenant environments with robust authentication and auditing.
Avoid using external HTTP proxies for access control as they add complexity and less granular security; instead, rely on this plugin's internal filtering after Elasticsearch query parsing. Ensure proper configuration of authentication and authorization rules to prevent unauthorized data modification or deletion. The plugin supports SSL via Netty, which should be enabled for secure communication in production environments.
Download the plugin from the official repository or Maven Central
Install the plugin into your Elasticsearch cluster using the Elasticsearch plugin install command
Configure the plugin rules in the Elasticsearch configuration file according to your security requirements
Restart Elasticsearch to apply the plugin and configuration
Optionally, configure SSL using the Netty transport handler for encrypted communication
Refer to the official documentation for detailed rule setup and advanced configurationselasticsearch-plugin install readonlyrest
Installs the ReadonlyREST plugin into your Elasticsearch cluster
Configure access control rules in elasticsearch.yml
Defines authentication, authorization, and auditing rules to control access
Restart Elasticsearch
Applies the plugin and configuration changes