Amazon is making a change to its AWS service on June 24, 2020 (https://forums.aws.amazon.com/ann.jspa?annID=5816) that will impact snapshot/restore functionality for users running ES 5.6.4 or earlier and utilizing AWS S3 for snapshots.

Amazon has deprecated their S3 Sigv2 API, which was utilized by the repository-s3 plugin used with Elasticsearch versions 5.6.4 and earlier, out of which the 2.2.x and 2.4.x versions are included in Liferay Enterprise Search.

New buckets in all regions created after June 24, 2020 will not support SigV2. Requests signed using SigV2 made after this time will fail; this includes both snapshot and restore requests, effectively disabling snapshot functionality for new buckets.

How Do I Prepare For This?
To prevent S3 snapshots/restores from failing for new buckets starting June 24, 2020, there are several options available:

The long term option is to upgrade to a more recent supported version of Elasticsearch - version 6.1 at minimum. It’s important to note however that Elasticsearch 6.1 has reached End of Life (EOL) and is no longer supported starting June 13, 2019, so we recommend upgrading to a version that is still actively maintained.

The Elasticsearch versions compatible with Liferay Enterprise Search can be found here: https://help.liferay.com/hc/en-us/articles/360016511651. 

Upgrading also offers lots of extra benefits in the form of bug fixes and additional features! To get started, you’ll want to ensure that you read the release notes and breaking changes for the version you plan to upgrade to, as well as prior versions between your current version and target version. All of this helpful information for Elasticsearch product can be found in the following documentation: https://www.elastic.co/guide/index.html

Additionally, documentation for each Elasticsearch version includes a section on upgrading. Details such as “is a rolling upgrade possible, or will I need a complete shutdown/restart of the search cluster for the version I’m upgrading to?” are answered there.

The short term option is to adjust Elasticsearch configuration settings to override the default use of SigV2. You can manually tell older versions of Elasticsearch to attempt to use SigV4 by following these steps. Note that these steps have been tested successfully with Elasticsearch 2.4.6, but we cannot guarantee they’ll work with any particular version:

Step One: Add -Dcom.amazonaws.services.s3.enforceV4 to ES_JAVA_OPTS, either as a part of your run command or as an entry in your jvm.options file.
Step Two: Specify an endpoint of s3.{your S3 region}.amazonaws.com when you create/recreate a repository definition.
(Where {your S3 region} would be us-east-1, us-west-2, etc.)

You’ll need to restart Elasticsearch to have the changes to jvm.options take effect.

Finally, while Liferay Support cannot assist with configuration or setup of third party software, there is software available that can act as a proxy, taking SigV2 requests and translating them into SigV4 calls that might be an option. Examples would be https://github.com/awslabs/aws-sigv4-proxy and
https://github.com/cloudberrylab/s3v2tov4-proxy.