I am currently trying to generate a certificate that will allow us to connect to kibana from a remote browser with the FQDN subdomain.domain.com. I am having trouble finding a way to for the browser to find the CA certificate without installing on the end user pc.
The commands I use are:
elasticsearch-certutil cert --ca elastic-stack-ca.p12
I then create a certificate in PEM Format:
elasticsearch-certutil cert --ca elastic-stack-ca.p12 --dns subdomain.domain.com --ip public ip --name subdomain.domain.com --pem
I have also tried using the same CN as the CA certificate but get the same result.
The Root Ca is missing off the chain until you install it on the end user pc.
I am deploying the FQDN to a group of users and I need to make it as basic as possible to access Kibana without the need to install certificates.
I could be missing some extremely obvious so any advise or guidance would be extremely appreciated.