Certificate format for Kibana

ManuelF · August 25, 2020, 8:57pm

Update

After spending some time testing back and forward I was able to get it to work

Kibana does support PKCS#12 format
Make sure you have the following lines within your kibana.yml file

server.ssl.enabled: true
server.ssl.keystore.path: "/etc/kibana/certs/elastic-certificates.p12"
elasticsearch.ssl.certificateAuthorities: [ "/etc/kibana/certs/elastic-stack-ca.p12" ]
elasticsearch.ssl.verificationMode: certificate

If your certificate is not password protected, make sure to also add an empty string "" to the kibana-keystore. When prompt for a password, just leave in blank.

$ sudo /usr/share/kibana/bin/kibana-keystore add server.ssl.keystore.password --allow-root

Restart kibana service
You can now point your browser to https://[kibana_address]:5601

The above steps worked for me and I hope this help other users as well
Cheers!

Topic		Replies	Views
Kibana issue with PEM format Kibana elastic-stack-security	4	3999	September 23, 2020
Why does elasticsearch use PKCS#12, while Kibana needs PEM? Kibana elastic-stack-security	3	5178	January 18, 2019
How use .p12 key for TLS in Kibana Kibana elastic-stack-security	3	2688	November 30, 2018
Install Certificate .PFX Kibana elastic-stack-security	3	1206	October 17, 2022
Make .p12 to .pem for kibana Kibana elastic-stack-security	15	6896	June 26, 2019

Certificate format for Kibana

Related topics