I'm trying to use my own company.cer file for elasticsearch's ssl configuration.
However, I've failed with some cases.
The first case, I use cer extension of the certificate file in below configuration
xpack.security.enabled: true
xpack.security.transport.ssl.enabled: true
xpack.security.http.ssl.certificate: company.cer
xpack.security.http.ssl.certificate_authorities: company.cer
xpack.security.transport.ssl.certificate: company.cer
xpack.security.transport.ssl.certificate_authorities: company.cer
The second case I have tried with pfx,
xpack.security.enabled: true
xpack.security.transport.ssl.enabled: true
xpack.security.transport.ssl.verification_mode: certificate
xpack.security.transport.ssl.keystore.path: company.pfx
xpack.security.transport.ssl.truststore.path: company.pfx
xpack.security.transport.ssl.keystore.password: password
xpack.security.transport.ssl.truststore.password: password
xpack.security.http.ssl.keystore.password: password
xpack.security.http.ssl.truststore.password: password
The password is the password of pfx file. But this configuration didn't worked.
Then, I have tried generating crt, key files via OpenSSL From This Link with following configuration.
xpack.security.enabled: true
xpack.security.http.ssl.enabled: true
xpack.security.transport.ssl.enabled: true
xpack.security.http.ssl.key: company.key
xpack.security.http.ssl.certificate: company.crt
xpack.security.http.ssl.certificate_authorities: company.crt
xpack.security.transport.ssl.key: company.key
xpack.security.transport.ssl.certificate: company.crt
xpack.security.transport.ssl.certificate_authorities: company.crt
How can i configure Elasticsearch SSL from cer or pfx file ?
Thanks for answering