Support of Shield for Elasticsearch
Zoomdata allows you to connect to your Elasticsearch data set secured by Shield.
Shield is a plugin for Elasticsearch that aims at securing the data on your cluster. Learn more about Shield .
By granting the required permissions for an Elasticsearch user configured in Shield, you can control the access level to your Elasticsearch data set.
Configuring Cluster or Index privileges for a user
To connect to the Elasticsearch cluster , you need to create an Elasticsearch user and configure the access privileges for this user.
While connecting to Elasticsearch data source, you have to specify the credentials of the Elasticsearch user. The access permissions for the Elasticsearch user determine the scope of the data available for querying by Zoomdata users.
To work with Elasticsearch data set, use the Shield to grant the following minimal access privileges to the Elasticsearch user:
- Monitor privileges for Elasticsearch Cluster
- Manage (to get the metadata) and Read (to read data) privileges for Index
When the Elasticsearch user permissions are configured, you can proceed with connecting to a data source.
The indices and aliases that are not allowed by the permissions will not be shown in the list of indices and aliases and won't be displayed even in case they match the specified pattern.
Connection via HTTP or TCP and using SSL
You can connect to your Elasticsearch data source using HTTP or TCP protocols. The type of the protocol you can specify while connecting to a data source.
If you use HTTP protocol you can work with ES both with enabled and disabled SSL.
However, if you have selected the TCP client type and want to connect to an Elasticsearch data set, that is secured by Shield, you must enable SSL.