版本:
elasticsearch5.1.1
kibana5.1.1
下載地址 :https://www.elastic.co/downloads
現在Marvel的功能已經集成在x-pack裏面,安裝非常方便。下載指定環境的安裝包後,
bin/elasticsearch-plugin install x-pack
bin/kibana-plugin install x-pack
kibana.yml中指定elasticsearche的地址elasticsearch.url: "http://localhost:9200"
啓動即可
bin/elasticsearch
bin/kibana-plugin
瀏覽器上輸入:
http://localhost:5601
x-pack是Elastic Stack的擴展,將安全、警報、監視、報告和圖形功能包含在一個。5.0之前的版本,需要單獨安裝Marvel、Watcher、Shield.
此外x-pack可以個性化定製這些功能,列表如下:
Setting Description
xpack.security.enabled
Set to false
to
disable X-Pack security. Configure in
bothelasticsearch.yml
and kibana.yml
.
xpack.monitoring.enabled
Set to false
to
disable X-Pack monitoring. Configure in
bothelasticsearch.yml
and kibana.yml
.
xpack.graph.enabled
Set to false
to
disable X-Pack graph. Configure in
bothelasticsearch.yml
and kibana.yml
.
xpack.watcher.enabled
Set to false
to
disable Watcher. Configure in elasticsearch.yml
only.
xpack.reporting.enabled
Set to false
to
disable X-Pack reporting. Configure in kibana.yml
only.
PS:注意事項
1)安裝時會彈出需要允許額外的授權,輸入Y即可。
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ @ WARNING: plugin requires additional permissions @ @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ * java.lang.RuntimePermission accessClassInPackage.com.sun.activation.registries * java.lang.RuntimePermission getClassLoader * java.lang.RuntimePermission setContextClassLoader * java.lang.RuntimePermission setFactory * java.security.SecurityPermission createPolicy.JavaPolicy * java.security.SecurityPermission getPolicy * java.security.SecurityPermission putProviderProperty.BC * java.security.SecurityPermission setPolicy * java.util.PropertyPermission * read,write * java.util.PropertyPermission sun.nio.ch.bugLevel write * javax.net.ssl.SSLPermission setHostnameVerifier See http://docs.oracle.com/javase/8/docs/technotes/guides/security/permissions.html for descriptions of what these permissions allow and the associated risks. Continue with installation? [y/N]y
2 如果關閉了允許自動創建動態索引的話,需要給x-pack提供一下權限
action.auto_create_index: .security,.monitoring*,.watches,.triggered_watches,.watcher-history*
3 增加驗證用戶機制,訪問需要用戶名和密碼,默認爲elastic和changeme
對elasticsearch的curl訪問,也需要在http header上增加授權,Authorization: Basic XXXXX
XXXX= name:password base64加密。例如上述的elastic:changeme 加密後爲ZWxhc3RpYzpjaGFuZ2VtZQ==