Kerberos认证(Elasticsearch)

一、Elasticsearch集成Kerberos认证

  效果图:

image

image

  可参考:elasticsearch添加kerberos认证完整操作流程

 

二、Nginx代理服务进行配置kerberos认证

  1. 下载GSSAPI模块:https://github.com/stnoonan/spnego-http-auth-nginx-module.git

  2. 执行nginx编译:./configure --prefix=/opt/nginx --with-http_stub_status_module --with-http_ssl_module --add-module=./spnego-http-auth-nginx-module-main

  3. Nginx配置:

server {
        listen 8010;
        server_name wz01;

        auth_gss on;
        auth_gss_keytab /opt/nginx/conf/nginx.keytab;
        auth_gss_realm RHXY.COM;
        auth_gss_service_name HTTP;
         
       location / {
           proxy_pass http://127.0.0.1:9200
       }
}

 

三、Redis配置Kerberos认证

 

posted @ 2025-10-14 14:41  如幻行云  阅读(1)  评论(0)    收藏  举报