0
0
Elasticsearchquery~10 mins

Why security protects sensitive data in Elasticsearch - Test Your Understanding

Choose your learning style9 modes available
LearnWhyDeepVisualTryChallengeProjectRecallTime
Practice - 5 Tasks
Answer the questions below
1fill in blank
easy

Complete the code to enable security in Elasticsearch.

Elasticsearch
xpack.security.enabled: [1]
Drag options to blanks, or click blank then click option'
Ano
Bfalse
Cyes
Dtrue
Attempts:
3 left
💡 Hint
Common Mistakes
Using 'false' disables security.
Using 'yes' or 'no' are not valid boolean values here.
2fill in blank
medium

Complete the code to set a password for the built-in user.

Elasticsearch
bin/elasticsearch-setup-passwords [1]
Drag options to blanks, or click blank then click option'
Adefault
Binteractive
Cmanual
Dauto
Attempts:
3 left
💡 Hint
Common Mistakes
Using 'auto' sets random passwords without prompts.
Using 'manual' is not a valid option.
3fill in blank
hard

Fix the error in the role definition to allow reading data.

Elasticsearch
"read_data": {
  "cluster": ["monitor"],
  "indices": [
    {
      "names": ["*"],
      "privileges": ["[1]"]
    }
  ]
}
Drag options to blanks, or click blank then click option'
Awrite
Bdelete
Cread
Dall
Attempts:
3 left
💡 Hint
Common Mistakes
Using 'write' does not allow reading data.
Using 'all' grants too many permissions.
4fill in blank
hard

Fill both blanks to create a user with the 'read_data' role and a password.

Elasticsearch
POST /_security/user/[1]
{
  "password": "[2]",
  "roles": ["read_data"]
}
Drag options to blanks, or click blank then click option'
Aalice
Bsecret123
Cpassword
Dbob
Attempts:
3 left
💡 Hint
Common Mistakes
Using 'bob' as username but 'password' as password is weak.
Leaving password blank or too simple.
5fill in blank
hard

Fill all three blanks to configure TLS for the HTTP layer.

Elasticsearch
xpack.security.http.ssl:
  enabled: [1]
  key: [2]
  certificate: [3]
Drag options to blanks, or click blank then click option'
Afalse
B/etc/elasticsearch/certs/http.key
C/etc/elasticsearch/certs/http.crt
Dtrue
Attempts:
3 left
💡 Hint
Common Mistakes
Setting enabled to false disables TLS.
Using wrong file paths causes errors.