Question:
Is this issue related to a cloud configuration, or is there something missing in the ELK configuration? What steps can I take to resolve this issue and ensure that logs are correctly collected from endpoints outside the network using a certificate?
Looks like you have self-signed certs which can be a bit tricky...
Are you sure the Fleet is running properly?
Are you sure the agent enrolled properly?
Have you looked at the troubleshooting guide
Have you run the status commands for the agent?
Did you note here...
If you encounter an "x509: certificate signed by unknown authority" error, you might be trying to enroll in a Fleet Server that uses self-signed certs. To fix this problem in a non-production environment, pass the --insecure flag. For more information, refer to the troubleshooting guide.
You can absolutely use self signed certs you just need to be very careful when setting up ...
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant
logo are trademarks of the
Apache Software Foundation
in the United States and/or other countries.
