I set the ssl configuration for my cluster using the elasticsearch-certutil, but my Kibana is unable to reach https://epr.elastic.co so I can not install any integration since it depends on loading from this repo.
In the logs I can see Error connecting to package registry: request to https://epr.elastic.co/search?experimental=true&kibana.version=8.3.2 failed, reason: self signed certificate in the chain
I tried to disable this verification using elasticsearch.ssl.verificationMode as none but it still give me the same result as before.
What can I do to avoid this error and to be able to install fleet/integrations?
Hello @Leonardo_Henrique , the setting elasticsearch.ssl.verification_mode only set the verification mode to be used for authorization between Kibana and Elasticsearch.
The error you are receiving is while connecting to EPR (Elastic Package Registry) which is essentially required to check and download the latest packages for Fleet.
BY any chance are you running your cluster in air-gapped environment ?
You can use the EPR version corresponding to the stack version you have. The upgrades are essential since with every release more features, functionalities and bug fixes are released, so this should always be part of Continuous Improvement.
For your particular version, you can try using 8.3.3 version of EPR: Air-gapped environments | Fleet and Elastic Agent Guide [8.3] | Elastic