/
    • What’s New
      • Document Conventions
    • Getting Started
      • Getting Started With Demo Data
        • Starting Siren Investigate
        • Filtering Results
        • Creating Filters With The Relational Navigator
        • Enhanced Search Results
      • Getting Started With Your Own Data
        • Installing Siren Platform
        • Connecting to an external JDBC datasource
        • Importing data by using Logstash
        • Creating an initial data model
        • Creating dashboards
        • Using the Graph Browser
    • Siren Investigate
      • Setting up Siren Investigate
        • Supported platforms
        • Installing Siren Investigate
        • Upgrading Siren Investigate
        • Configuring Siren Investigate
        • White-labelling constants and images in Siren
        • Accessing Siren Investigate
        • Connecting Siren Investigate to backend datasources
        • Using Siren Investigate in a production environment
        • Security standardization
      • Data model
        • Creating an index pattern search
        • How to use entity identifiers
        • Creating relationships
        • How to name relations
        • Relations auto-discovery wizard
      • Discover
        • Setting the time filter
        • Searching your data
        • Filtering by field
        • Viewing document data
        • Viewing document context
        • Viewing field data statistics
        • Selected fields
      • Dashboards
        • The Dashboard Data Model
        • Creating a dashboard
        • Adding visualizations to a dashboard
        • Saving a dashboard
        • Customizing the dashboard
        • Working with filters
        • Sharing a dashboard
        • Reset all dashboards
        • Dashboard groups
        • Auto generate dashboard
        • Generate dashboard report
        • Create a search over all dashboard
        • Dashboard color theme
        • Refreshing the search results
      • Graph Browser
        • Configuring the Graph Browser
          • Sampling data in the graph
        • Navigating the graph
        • Working with lenses
          • Configuring Jexl operators
        • Expanding the graph
        • Selecting graph tables
        • Using cards on the graph
        • Calculating the shortest path
        • Link analysis
        • Graph Browser shortcuts
      • Visualizations
        • Creating a visualization
        • Record Table visualization
        • Multichart
        • Analytic Table
        • Markdown Widget
        • Metric
        • Goal and Gauge
        • Pie Chart
        • Coordinate Map
        • Enhanced Coordinate Map
        • Region Map
        • Time Series Visual Builder
        • Tag Cloud
        • Topic Clustering
        • Heatmap chart
        • Line, Area, and Bar charts
        • Timeline
        • Scatter Plot
        • Radar chart
        • Box Plot
        • Bubble diagram
        • Horizontal Bar chart
        • Parallel Lines chart
        • Getting started with GeoServer
      • Timelion
        • Getting started with Timelion
        • Timelion online help and documentation
      • Authentication and access control
        • Enabling HTTPS
        • Search Guard overview
          • Setting up security certificates
          • Integrating Search Guard
          • Upgrading Search Guard
          • Configuring Investigate to work with Search Guard
          • Additional authentication mechanisms
            • Configuring OpenID Connect authentication
            • Configuring JWT authentication
            • Configuring Kerberos/SPNEGO authentication
        • Elastic Stack security overview
          • Integrating Elastic Stack security
          • Additional authentication mechanisms
            • Configuring OpenID Connect authentication
        • Configuring ACL in Siren Investigate
      • Data reflection
        • Datasource reflection jobs
        • Importing data from Excel and CSV files
        • Integrating Neo4j data
        • Security setup
        • Datasource reflection pipelines
        • Date formats
        • Scheduler Cron syntax
      • Dev Tools
        • Console
        • Translate Join Query
      • Scripting API
        • Core APIs
          • Siren API
          • Dashboard
          • Visualization
          • Search
          • Basic Emitter
          • Notify
        • Visualization APIs
        • Examples
          • Enhanced Tile Map
          • Graph Browser
          • Scripted Panel
        • Changelog
      • Web services
        • Using Web services
          • Enabling Web services
          • Configuring the Query Web Services visualization
          • Invoking Web services
          • Data storage
          • Configuring security
        • Extending Web services
          • Web services tutorials
            • Beginners' tutorial
            • Intermediate tutorial
            • Advanced tutorial
          • API reference
            • Service configuration
            • Output configuration
            • Error handling
      • Management
        • Index pattern searches
        • Advanced settings for relations
        • Preventing expensive queries
        • Datasources
        • Templates
        • Managing fields
        • Setting advanced options
        • Managing saved searches, visualizations, and dashboards
        • Adding custom icon packs
      • Relational Browsing
        • Relational Navigator
      • Working with JDBC datasources
        • Siren Investigate datasource configuration
      • Siren Investigate Gremlin Server
      • Advanced configurations
        • Internationalization
        • Cross-frame Communication
        • Image Proxy (IP)
        • Cleaning the browser state on user logout
      • Plugins
        • Installing and enabling plugins
        • Updating and removing plugins
        • Switching off plugins
        • Custom configurations
      • REST APIs
        • The Query Generator API
          • The Dashboard API
          • The Search API
        • Downloading the CData JDBC connector
        • Implementing the CData JDBC connector
      • Auditing user sessions
        • Configuring session logs
        • Session log indices
        • Session log entries
    • Siren Alert
      • Introduction
        • Using Watchers
      • Configuring Siren Alert
        • Example (extended)
      • Alerting tutorial
      • Watchers
        • Trigger schedule
        • Supported actions
        • Watcher_controllers
        • Examples
        • Wizard
        • Custom watchers
        • Templating
        • Example - Configuration panel
        • Example - Parameters panel
      • Authentication
      • Alerting how to
        • Manual in dashboard
        • Query aggregations watcher for Nagios NRDP
        • Reports
        • Spy plugin
        • Annotations
        • Using Siren Alert with Search Guard
        • Transform
        • Anomaly detection
        • Statistical anomaly detection
        • Outliers
      • Security setup for Siren Alert
      • High Availability (HA) for node clusters
      • Troubleshooting
      • Siren Alert FAQ
    • Siren Federate
    • Siren ER
    • Troubleshooting
      • System performance
    • Release Notes
    • Glossary
Siren Platform 10.5
  • Siren ER (beta)
    • 1.1.1
  • Siren Federate
    • 27.3
    • 26.5
    • 25.3
    • 24.0
    • 23.0
    • 22.5
    • 21.6
    • 20.2
  • Siren NLP
    • 0.5.1
  • Siren Platform
    • 12.1
    • 12.0
    • 11.1
    • 11.0
    • 10.5
    • 10.4
      /  
  • Siren Investigate
  • Authentication and access control
  • Search Guard overview
12.1 12.0 11.1 11.0 10.5 10.4

Search Guard overview

Search Guard is a security and alerting plug-in for Elasticsearch, which is supported by Siren Investigate.

This section provides an overview of how to set up an Elasticsearch cluster with Search Guard and how to configure Siren Investigate to access the cluster.

The official Search Guard documentation is available at https://docs.search-guard.com/latest/ .

In this section

Set up security certificates

Install and integrate Search Guard

Configure authentication mechanisms

Copyright © 2020 - Siren.