Search Guard is an independent implementation of a security access layer for Elasticsearch and is completely independent of Elasticsearch’s own security offerings.
Search Guard offers a similar functionality to its competitor products and adds additional features on top, with a flexible licensing scheme. Additional features include:
- OpenSSL support
- Kerberos support
- HTTP Proxy Authentication support
- JSON web token support
- Kibana multitenancy
- Open Source
Search Guard does not support symmetric encryption on the transport layer but requires TLS.
Licenses for Search Guard are based on production clusters, not nodes. That means that you can scale your cluster up and down as necessary, without affecting the license costs. Development, staging, integration and QA/AUT-systems are covered by the license as well at no additional cost.