In Kibana, I am using Nginx as a reverse proxy and configured TLS using LetsEncrypt. Kibana is configured to serve on
localhost, along with these custom settings:
elasticsearch.ssl.certificateAuthorities: [ "/etc/kibana/ca/ca.crt" ]
Each Elasticsearch node is configured with:
certutil to create the CA on one Elasticsearch server, then generated the certs, SCPed the CA crt and key to my local computer, then SCPed them to the other two Elasticsearch nodes, used
certutil on each of those to generate certs for the nodes using that CA, then deleted the ca.key from each Elasticsearch node and kept it on my local computer.
Is there something wrong with my config? Thank you.