Managing InfluxDB security

This page documents an earlier version of InfluxDB. InfluxDB v2.0 is the latest stable version. See the equivalent InfluxDB v2.0 documentation: Manage security and authorization.

Some customers may choose to install InfluxDB with public internet access, however doing so can inadvertently expose your data and invite unwelcome attacks on your database. Check out the sections below for how protect the data in your InfluxDB instance.

Enabling authentication

Password protect your InfluxDB instance to keep any unauthorized individuals from accessing your data.

Resources: Set up Authentication

Managing users and permissions

Restrict access by creating individual users and assigning them relevant read and/or write permissions.

Resources: User Types and Privileges, User Management Commands

Enabling HTTPS

Enabling HTTPS encrypts the communication between clients and the InfluxDB server. HTTPS can also verify the authenticity of the InfluxDB server to connecting clients.

Resources: Enabling HTTPS

Securing your host


If you’re only running InfluxDB, close all ports on the host except for port 8086. You can also use a proxy to port 8086.

InfluxDB uses port 8088 for remote backups and restores. We highly recommend closing that port and, if performing a remote backup, giving specific permission only to the remote machine.

AWS recommendations

We recommend implementing on-disk encryption; InfluxDB does not offer built-in support to encrypt the data.

Set your InfluxDB URL

Upgrade to InfluxDB Cloud or InfluxDB 2.0!

InfluxDB Cloud and InfluxDB OSS 2.0 ready for production.