I have just set up my first full Elastic Stack. I am now trying to get Windows Event logs from one of our test boxes, however the logs will be transported via the internet and therefore I need to set up TLS from WinLogBeat to Logstash.
I am really struggling with the whole 'certificates' thing. I am using certgen to create my certificates. I have run certgen and created two folders in /etc/elasticsearch/x-pack, the first folder is called ca (certificate authority?) and the second is called Test (which I named). So I can create the certificates, but now where do I put them? Would I put the test certificate and key onto the WinLogBeat machine? and do I need to put a certificate onto Logstash?
Cheers,
G