When the Elasticsearch security features are enabled, users must log in to Kibana with a valid user ID and password.
Kibana also performs some tasks under the covers that require use of the
Configure Kibana to use the built-in
kibana_systemuser and the password that you created:
If you don’t mind having passwords visible in your configuration file, uncomment and update the following settings in the
kibana.ymlfile in your Kibana directory:
If you installed Kibana using archive distributions (
kibana.ymlconfiguration file is in
KIBANA_HOME/config. If you used package distributions (Debian or RPM), it’s in
/etc/kibana. For more information, see Configuring Kibana.
For example, add the following settings:
elasticsearch.username: "kibana_system" elasticsearch.password: "your_password"
Specify the password that you set with the
elasticsearch-setup-passwordscommand then save your changes to the file.
If you prefer not to put your user ID and password in the
kibana.ymlfile, store them in a keystore instead. Run the following commands to create the Kibana keystore and add the secure settings:
./bin/kibana-keystore create ./bin/kibana-keystore add elasticsearch.username ./bin/kibana-keystore add elasticsearch.password
When prompted, specify the
kibana_systembuilt-in user and its password for these setting values. The settings are automatically applied when you start Kibana. To learn more, see Secure settings.
Restart Kibana. For example, if you installed Kibana with a
.tar.gzpackage, run the following command from the Kibana directory: