This documentation contains work-in-progress information for future Elastic Stack and Cloud releases. Use the version selector to view supported release docs. It also contains some Elastic Cloud serverless information. Check out our serverless docs for more details.
« Troubleshooting security Authorization exceptions »
Elastic Docs Elasticsearch Guide [master] Secure the Elastic Stack Troubleshooting security

Some settings are not returned via the nodes settings API

edit

Some settings are not returned via the nodes settings API

edit

Symptoms:

  • When you use the nodes info API to retrieve settings for a node, some information is missing.

Resolution:

This is intentional. Some of the settings are considered to be highly sensitive: all ssl settings, ldap bind_dn, and bind_password. For this reason, we filter these settings and do not expose them via the nodes info API rest endpoint. You can also define additional sensitive settings that should be hidden using the xpack.security.hide_settings setting. For example, this snippet hides the url settings of the ldap1 realm and all settings of the ad1 realm.

xpack.security.hide_settings: xpack.security.authc.realms.ldap1.url,
xpack.security.authc.realms.ad1.*
« Troubleshooting security Authorization exceptions »