Skip to content

[REQUEST]: Document the new FIPS-compliant EPR endpoint #1912

Description

@jsoriano

Description

We are going to add a new EPR endpoint that satisfies compliance requirements for FIPS and other security standards. See https://github.com/elastic/ingest-dev/issues/7896.

This new endpoint will be available at https://epr-fips.elastic.co, and will be functionally equivalent to https://epr.elastic.co. The main difference will be that the new endpoint will be stricter on using the most secure cryptographic protocols.

https://epr.elastic.co will remain by now the default in our products, users will need to opt-in for the new one, configuring Kibana to use this endpoint as Package Registry.

We are not changing the default by now because following the strictest recommendations can break compatibility with old clients.

We need to document:

  • The existence of this new endpoint.
  • The differences with the existing endpoint.
  • How users can opt-in to use this endpoint.

Resources

Collaboration

The documentation team will investigate the issue and create the initial content.

Point of contact.

Main contact: @jsoriano @nimarezainia

Stakeholders: @EdCzl

Metadata

Metadata

Assignees

No one assigned

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions