[DOCS] Add section for enrolling new nodes on Docker (#1922) (#1924)

* [DOCS] Add section for enrolling new nodes on Docker (#1922) * [DOCS] Add section for enrolling new nodes on Docker * Modify variable for Elasticsearch version * Change es-node-01 to es01
elastic · Dec 16, 2021 · 1cdace6 · 1cdace6
1 parent ed091a1
commit 1cdace6
Showing 1 changed file with 64 additions and 13 deletions.
diff --git a/docs/en/getting-started/get-started-docker.asciidoc b/docs/en/getting-started/get-started-docker.asciidoc
@@ -113,7 +113,7 @@ endif::[]
 ifeval::["{release-state}"!="unreleased"]
 [source,sh,subs="attributes"]
 ----
-docker run --name es-node01 --net elastic -p 9200:9200 -it docker.elastic.co/elasticsearch/elasticsearch:{version}
+docker run --name es01 --net elastic -p 9200:9200 -it docker.elastic.co/elasticsearch/elasticsearch:{version}
 ----
 
 endif::[]
@@ -130,15 +130,15 @@ to the `http_ca.crt` certificate, which you'll use in the next step.
 +
 [source,sh]
 ----
-docker exec -it es-node01 /bin/bash -c "find /usr/share/elasticsearch -name http_ca.crt"
+docker exec -it es01 /bin/bash -c "find /usr/share/elasticsearch -name http_ca.crt"
 ----
 
 . Copy the `http_ca.crt` security certificate from your Docker container to
 your local machine. 
 +
 [source,sh]
 ----
-docker cp es-node01:/usr/share/elasticsearch/config/tls_auto_config_<timestamp>/http_ca.crt .
+docker cp es01:/usr/share/elasticsearch/config/tls_auto_config_<timestamp>/http_ca.crt .
 ----
 `<timestamp>`:: The timestamp of when the auto-configuration process created
 the security files directory in your Docker container.
@@ -226,6 +226,57 @@ endif::[]
   .. Log in to {kib} as the `elastic` user with the password that was generated
   when you started {es}.
 
+[[docker-enroll-nodes]]
+[discrete]
+==== Enroll additional nodes
+
+When you start {es} for the first time, the installation process configures a single-node cluster by default. This process also generates an enrollment token
+and prints it to your terminal. If you want a node to join an existing cluster,
+start the new node with the generated enrollment token.
+
+--
+.Generating enrollment tokens
+****
+The enrollment token is valid for 30 minutes. If you need to generate a 
+new enrollment token, run the 
+{ref}/create-enrollment-token.html[`elasticsearch-create-enrollment-token`] tool
+on your existing node. This tool is available in the {es} `bin` directory of the 
+Docker container.
+
+For example, run the following command on the existing `es01` node to
+generate an enrollment token for new {es} nodes:
+
+[source,sh]
+----
+docker exec -it es01 /usr/share/elasticsearch/bin/elasticsearch-create-enrollment-token -s node
+----
+****
+--
+
+. In the terminal where you started your first node, copy the generated
+enrollment token for adding new {es} nodes. 
+
+. On your new node, start {es} and include the generated enrollment token.
++
+[source,sh,subs="attributes"]
+----
+docker run -e ENROLLMENT_TOKEN="<token>" --name es02 --net elastic -it docker.elastic.co/elasticsearch/elasticsearch:{version}
+----
++
+{es} is now configured to join the existing cluster.
+
+If you experience issues where the container where your first node is running
+exits when your second node starts, explicitly set values for the JVM heap size.
+To {ref}/docker.html#docker-set-heap-size[manually configure the heap size], 
+include the `ES_JAVA_OPTS` variable and set values for `-Xms` and `-Xmx` when 
+starting each node. For example, the following command starts node `es02` and 
+sets the minimum and maximum JVM heap size to 1 GB:
+
+[source,sh,subs="attributes"]
+----
+docker run -e ES_JAVA_OPTS="-Xms1g -Xmx1g" -e ENROLLMENT_TOKEN="<token>" --name es02 -p 9201:9200 --net elastic -it docker.elastic.co/elasticsearch/elasticsearch:{version}
+----
+
 [[docker-generate]]
 [discrete]
 ==== Generate passwords and enrollment tokens
@@ -237,7 +288,7 @@ For example, to reset the password for the `elastic` user:
 
 [source,sh]
 ----
-docker exec -it es-node01 /usr/share/elasticsearch/bin/elasticsearch-reset-password -u elastic
+docker exec -it es01 /usr/share/elasticsearch/bin/elasticsearch-reset-password -u elastic
 ----
 
 If you need to generate new enrollment tokens for {kib} or {es} nodes, run the
@@ -248,7 +299,7 @@ For example, to generate a new enrollment token for {kib}:
 
 [source,sh]
 ----
-docker exec -it es-node01 /usr/share/elasticsearch/bin/elasticsearch-create-enrollment-token -s kibana
+docker exec -it es01 /usr/share/elasticsearch/bin/elasticsearch-create-enrollment-token -s kibana
 ----
 
 
@@ -261,7 +312,7 @@ To remove the containers and their network, run:
 [source,sh]
 ----
 docker network rm elastic
-docker rm es-node01
+docker rm es01
 docker rm kib01
 ----
 
@@ -380,8 +431,8 @@ and join the lines before running this command.
 --
 ["source","sh"]
 ----
-docker exec es-node01 /bin/bash -c "bin/elasticsearch-setup-passwords \
-auto --batch --url https://es-node01:9200"
+docker exec es01 /bin/bash -c "bin/elasticsearch-setup-passwords \
+auto --batch --url https://es01:9200"
 ----
 
 IMPORTANT: Make a note of the generated passwords.
@@ -406,13 +457,13 @@ ifeval::["{release-state}"!="unreleased"]
   kib01:
     image: docker.elastic.co/kibana/kibana:${VERSION}
     container_name: kib01
-    depends_on: {"es-node01": {"condition": "service_healthy"}}
+    depends_on: {"es01": {"condition": "service_healthy"}}
     ports:
       - 5601:5601
     environment:
       SERVERNAME: localhost
-      ELASTICSEARCH_URL: https://es-node01:9200
-      ELASTICSEARCH_HOSTS: https://es-node01:9200
+      ELASTICSEARCH_URL: https://es01:9200
+      ELASTICSEARCH_HOSTS: https://es01:9200
       ELASTICSEARCH_USERNAME: kibana_system
       **ELASTICSEARCH_PASSWORD: CHANGEME**
       ELASTICSEARCH_SSL_CERTIFICATEAUTHORITIES: $CERTS_DIR/ca/ca.crt
@@ -453,15 +504,15 @@ volumes by running `docker-compose -f elastic-docker-tls.yml down -v`.
 Specifying settings for {es} and {{kib}} directly in the compose file is a convenient way to get started,
 but loading settings from a file is preferable once you get past the experimental stage.
 
-For example, to use `es-node01.yml` as the configuration file for the `es-node01` {es} node,
+For example, to use `es01.yml` as the configuration file for the `es01` {es} node,
 you can create a bind mount in the volumes section.
 
 ["source","yaml"]
 ----
     volumes:
       - data01:/usr/share/elasticsearch/data
       - certs:$CERTS_DIR
-      - ./es-node01.yml:/usr/share/elasticsearch/config/elasticsearch.yml
+      - ./es01.yml:/usr/share/elasticsearch/config/elasticsearch.yml
 ----
 
 Similarly, to load {kib} settings from a file, you overwrite `/usr/share/kibana/config/kibana.yml`: