Conf Kibana and shield

Gnosis · November 14, 2016, 4:16pm

Hi all,

I've followed all the action to use SSl with Elastic and Kibana but it doesn't work.

I've generated keystore, certificat and key (first time for me) but when i must filled the kibana conf i don't understand what i have to put for the options :

server.ssl.key: /path/to/your/server.key
server.ssl.cert: /path/to/your/server.crt
elasticsearch.ssl.ca: /path/to/your/cacert.pem

Someone could explain me ?

I don't put all the actions i made because it will be a paste of the documentation.
However first i made a CA --> https://www.elastic.co/guide/en/shield/2.3/certificate-authority.html
then i follow that -> https://www.elastic.co/guide/en/shield/2.3/ssl-tls.html#installing-node-certificates

and finally that --> https://www.elastic.co/guide/en/shield/2.3/kibana.html

Thx all

ppisljar · November 16, 2016, 1:37pm

First sorry for late reply. Just to confirm, you are using elastic serach 2.3 ?

Gnosis · November 16, 2016, 1:52pm

Don't worry thx for your reply, and yes i use 2.3 version

ppisljar · November 16, 2016, 7:08pm

elasticsearch.ssl.ca needs to point to your cacert.pem file you generated in the first step. this is used to encrypt communication between kibana server and elastic search.

server.ssl.key and .cert are different certs that you use to encrypt kibana server - browser communication.

Gnosis · November 17, 2016, 9:01am

Ok, thx.

So in short, what link (of my initial message) do i have to use for each option plz ?

I'm really sorry but i think i lack information on SSL

ppisljar · November 17, 2016, 11:31am

first link for elasticsearch.ssl.ca

for server.ssl.key and .cert check out this post

system · December 15, 2016, 11:31am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.