0
0
Elasticsearchquery~10 mins

Encryption in transit and at rest in Elasticsearch - Interactive Code Practice

Choose your learning style9 modes available
LearnWhyDeepVisualTryChallengeProjectRecallTime
Practice - 5 Tasks
Answer the questions below
1fill in blank
easy

Complete the code to enable encryption in transit by setting the correct protocol.

Elasticsearch
PUT /_cluster/settings
{
  "persistent": {
    "xpack.security.transport.ssl.enabled": [1]
  }
}
Drag options to blanks, or click blank then click option'
Atrue
Bfalse
Cauto
Dnone
Attempts:
3 left
💡 Hint
Common Mistakes
Using false disables encryption, which is insecure.
Using 'auto' or 'none' are invalid values for this setting.
2fill in blank
medium

Complete the code to enable encryption at rest by configuring the keystore setting.

Elasticsearch
PUT /_cluster/settings
{
  "persistent": {
    "xpack.security.encryptionKey": [1]
  }
}
Drag options to blanks, or click blank then click option'
Atrue
B"my_secret_key"
C"false"
Dnull
Attempts:
3 left
💡 Hint
Common Mistakes
Using boolean true instead of a string key.
Leaving the key null disables encryption.
3fill in blank
hard

Fix the error in the transport SSL configuration by choosing the correct certificate setting.

Elasticsearch
PUT /_cluster/settings
{
  "persistent": {
    "xpack.security.transport.ssl.certificate": [1]
  }
}
Drag options to blanks, or click blank then click option'
A"/etc/elasticsearch/certs/node.crt"
Btrue
C"enabled"
Dnull
Attempts:
3 left
💡 Hint
Common Mistakes
Using true or 'enabled' instead of a file path string.
Setting the value to null disables the certificate.
4fill in blank
hard

Fill both blanks to configure encryption in transit with the correct key and enable SSL.

Elasticsearch
PUT /_cluster/settings
{
  "persistent": {
    "xpack.security.transport.ssl.enabled": [1],
    "xpack.security.transport.ssl.key": [2]
  }
}
Drag options to blanks, or click blank then click option'
Atrue
B"/etc/elasticsearch/certs/node.key"
Cfalse
D"/etc/elasticsearch/certs/node.pem"
Attempts:
3 left
💡 Hint
Common Mistakes
Setting SSL enabled to false disables encryption.
Using incorrect file paths or wrong file types for the key.
5fill in blank
hard

Fill all three blanks to configure encryption at rest with a key, enable SSL, and set the certificate path.

Elasticsearch
PUT /_cluster/settings
{
  "persistent": {
    "xpack.security.encryptionKey": [1],
    "xpack.security.transport.ssl.enabled": [2],
    "xpack.security.transport.ssl.certificate": [3]
  }
}
Drag options to blanks, or click blank then click option'
A"my_secure_key"
Btrue
C"/etc/elasticsearch/certs/node.crt"
Dfalse
Attempts:
3 left
💡 Hint
Common Mistakes
Using false disables SSL.
Using boolean values for encryption key.
Incorrect certificate file path.