03-21-2019 02:28 PM
We are trying to encrypt Elastic search nodes with Safenet Protect-file encryption(Data at rest) which is a file level encryption.
The elastic search directory is under /data/disk0/elasticsearch it has the PII data
So, we are using CDH 5.14 with Hbase, HDFS, Spark2 etc
My question is
1. Does this elastic search directory need to be mapped with Elasticsearch user account to be able to decrypt the elastic search directory?
2.what are the users or services(HDFS,HBASE, Spark2, in cloudera should be allowed to decrypt data in Elastic search directory ?
03-22-2019 08:28 AM