ReadonlyREST
Portal
current
current
  • README
  • For Elasticsearch
    • Audit configuration
    • External to local groups mapping
    • FIPS mode
    • FLS engine
    • indices rule - Index not found scenario
    • indices rule - ES Templates handling
  • For Kibana
    • Impersonation (Enterprise)
    • Kibana 7.8.x and older
    • ReadonlyREST API
  • For ECK
  • Universal Builds
  • Examples
    • Multi-tenancy Elastic Stack (Enterprise)
    • Multi-user Elastic Stack (PRO)
    • SAML SSO (Enterprise)
      • Keycloak
      • Microsoft Azure AD
      • Microsoft ADFS
      • Duo Security MFA
    • OpenID Connect (OIDC) (Enterprise)
      • Keycloak
    • Impersonation (Enterprise)
      • Creating Test Settings
      • Defining external services mock configurations
      • Impersonating users
    • ROR cluster with Elastic Cloud integration
      • Docker-based playground
      • Configuration details
    • Custom middleware (Enterprise)
      • Enriching the metadata
      • Reject machine-to-machine traffic using custom metadata ACL rules
      • Reordering available tenancies
      • Available rorRequest API
      • Secure Logstash
      • Secure Metricbeat
  • Contribution License Agreement
  • Commercial Licenses
  • Changelog
Powered by GitBook
On this page
  • Before you start
  • Running interactive script

Was this helpful?

Edit on GitHub
  1. Examples
  2. ROR cluster with Elastic Cloud integration

Docker-based playground

Docker-based playground

PreviousROR cluster with Elastic Cloud integrationNextConfiguration details

Last updated 2 years ago

Was this helpful?

This document is a step-by-step guide on how to bootstrap a playground with a local ROR cluster in docker (one Elasticsearch node and one Kibana node) and connecting it to a real Elastic Cloud deployment using the "Trusted deployment" feature in Elastic Cloud.

This guide requires minimal knowledge because most of the process is automated. This interactive script will help you to do it quickly. As a result of the script, you will have a working local ROR cluster connected to the remote Elastic Cloud cluster.

Before you start

  1. Linux or Mac OS machine (Windows is untested)

  2. Account in https://cloud.elastic.co/ and valid deployment (a free trial is OK)

  3. and and installed

Running interactive script

  1. Clone ror-sandbox repository:

    git clone git@github.com:beshu-tech/ror-sandbox.git
    cd ror-sandbox/ror-cluster-elastic-cloud-demo/
  2. Run the interactive script:

    ./run.sh
  3. After hitting enter, you will be asked to download the with trusted Elastic Cloud deployment certificates:

  4. Let's assume the CA file was downloaded and saved in /tmp folder. Let's enter the location of the file and hit enter:

    The interactive script will use the CA file and generate certificates of the local cluster and its CA too. Let's hit enter to continue ...

    As we can see CA file ca.crt of the ROR cluster was created in /tmp/ror-sandbox/ror-cluster-elastic-cloud-demi/certs/ca folder.

  5. Now, the ROR cluster CA file will be used to add a trusted deployment in Elastic Cloud:

  6. The next step is to configure the Elastic Cloud remote cluster settings. Our script will ask you to provide "Proxy address" and "Server Name". Both can be found in the Elastic Cloud console.

  7. This is all we need to do in the Elastic Cloud console. Now, we can pick Elasticsearch, Kibana and ROR versions:

  8. Now, the script will create the docker-compose environment with one node of Elasticsearch with ROR installed and connected to the remote Elastic Cloud cluster. Moreover, one node of Kibana with ROR too will be visible http://localhost:15601. It's time to test it now :)

Docker
docker-compose
Git
CA file
Intro
Elastic Cloud CA Cert
Elastic Cloud CA Cert location
ROR cluster certs generation
Adding trust deployment instructions
Remote cluster settings
Picking versions
Summary