ElasticSearch Droplet 1-Click allows you to create a fully configured and ready-to-use instance of ElasticSearch in a matter of a minute.

If you’re looking to deploy ELK (Elastic, Logstash & Kibana) check out the DigitalOcean ELK Blueprint. Blueprints are Terraform based deployments that allow you to spin up multiple resources at once on DigitalOcean.

Software Included

Package Version License
ElasticSearch Latest ELv2

Creating an App using the Control Panel

Click the Deploy to DigitalOcean button to create a Droplet based on this 1-Click App. If you aren’t logged in, this link will prompt you to log in with your DigitalOcean account.

Deploy to DO

Creating an App using the API

In addition to creating a Droplet from the ElasticSearch 1-Click App using the control panel, you can also use the DigitalOcean API. As an example, to create a 4GB ElasticSearch Droplet in the SFO2 region, you can use the following curl command. You need to either save your API access token) to an environment variable or substitute it in the command below.

curl -X POST -H 'Content-Type: application/json' \
         -H 'Authorization: Bearer '$TOKEN'' -d \
        '{"name":"choose_a_name","region":"sfo2","size":"s-2vcpu-4gb","image": "elasticsearch"}' \

Getting Started After Deploying ElasticSearch

On your first SSH login to the droplet or launch of the Droplet console of your ElasticSearch Droplet 1-Click, you will be greeted by the ElasticSearch Droplet 1-Click Message-Of-The-Day (MOTD). MOTD includes useful information such as credentials for the elastic superuser, and credentials for the kibana and the logstash users as well as Kibana enrollment token.

If the MOTD is inaccessible, you can always retrieve credentials by reading the digitalocean_passwords file:

$ cat /root/.digitalocean_passwords

After you have created ElasticSearch Droplet 1-Click, give it a few minutes to start all the services.

To test your ElasticSearch Droplet 1-Click, use the ping command provided at the bottom of the MOTD:

motd ping command

If, after using the ping command, you see a JSON response with a tagline “You Know, for Search”, your ElasticSearch is operational and ready to accept payloads:

ping command success

Getting started with ElasticSearch

If it is your first time with ElasticSearch, we recommend the official ElasticSearch How to guide to getting started with basic configuration.

Keep in mind that ElasticSearch Droplet comes with XPACK security enabled and XPACK HTTP/TRANSPORT encryption enabled. By default it ships self-signed SSL certificate, which is enough for development and testing. If you wish to properly secure your ElasticSearch 1-Click with a CA certificate, follow this guide.

Droplet Summary

  • UFW firewall allows only SSH (port 22, rate limited), and 9200 (ElasticSearch) access.
  • XPACK security enabled. Random passwords are generated for elastic, kibana, and logstash_system users

An enrollment token is generated for easy Kibana setup.

  • Generated passwords can be found in /root/.digitalocean_password.
  • ElasticSearch is installed as an APT package
  • To check the status of the ElasticSearch, use:
$ systemctl status elasticsearch.service
  • ElasticSearch is listening to by default.