Elastic-agent add - error protocol integration http/https

grillo · November 8, 2022, 9:16am

Hi,

I have created a security policy for a windows computer and now I want to associate the windows computers with the "elastic-agent"... I have installed it as a service and I have specified, as indicated...

revision: 3
outputs:
  default:
    type: elasticsearch
    hosts:
      - 'https://10.172.211.30:9200'
    username: '{ES_USERNAME}'
    password: '{ES_PASSWORD}'

It doesn't connect - elasticsearch logs shows

received plaintext http traffic on an https channel, closing connection Netty4HttpChannel{localAddress.

how can I solve that? Y
What authentication methods would you recommend for these cases?

Thank you very much

lesio · November 9, 2022, 8:47am

I think the config should be supported, but you could also try

revision: 3
outputs:
  default:
    type: elasticsearch
    hosts:
      - 10.172.211.30:9200
    protocol: https
    username: '{ES_USERNAME}'
    password: '{ES_PASSWORD}'

grillo · November 10, 2022, 7:34am

Morning,

I have made the changes but it is the same result

[WARN ][o.e.x.s.t.n.SecurityNetty4HttpServerTransport] [elastic-vm-1] received plaintext http traffic on an https channel, closing connection Netty4HttpChannel{localAddress=/10.172.211.30:9200, remoteAddress=/192.168.254.20:12379}

grillo · November 10, 2022, 8:32am

Hi,

Sorry - error my. edit bad file configuration.

OK. I correct. the result has changed. now it gives me error in the ssl certificate.

Caused by: javax.net.ssl.SSLHandshakeException: Received fatal alert: bad_certificate

I've added

cacert: 'ca.crt'

The service doesn't start - I guess I'm using an inappropriate command. How do I indicate the location of the ca.crt that must be used for communication?

thank you

lesio · November 10, 2022, 11:54am

You need to provide the ssl section, read more in the docs

system · December 8, 2022, 11:55am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.