i was able to secure my elastic cluster with certificates generated from elasticsearch-certutil command, but i f try to open my node : https://elk-001:9200 from outside , receive warning from browser, about the certificates , firefox show me :
Someone could be trying to impersonate the site and you should not continue. Websites prove their identity via certificates. Firefox does not trust elk-001:9200 because its certificate issuer is unknown, the certificate is self-signed, or the server is not sending the correct intermediate certificates. Error code: SEC_ERROR_UNKNOWN_ISSUER View Certificate
this is from edge:
This server couldn't prove that it's **elk-001** ; its security certificate is from **elk-elastic- cluster-node-1** . This may be caused by a misconfiguration or an attacker intercepting your connection.
I installed on client ca.crt generated from elastic , but it wasn't helpful to solve the issue.
Can you help me?