Enable https on Elastic cluster node

Elastic Stack Elasticsearch
1

I have three nodes cluster and i am using 8.11.4 version. I am trying to enable https on the each node , below is my configuration and when i access the cluster with https it is throwing ERR_SSL_PROTOCOL_ERROR error , Please help

xpack.security.enabled: false
xpack.security.enrollment.enabled: false
ingest.geoip.downloader.enabled: false
xpack.security.http.ssl:
enabled: true
key: certs/private.key
certificate: certs/certificate.pem
certificate_authorities: [certs/ca-chain.pem]
xpack.security.transport.ssl:
enabled: false

3

Please show us exactly how you are trying to access the cluster, and the error message you receive.

4

You have explicitly turned off security.
SSL is part of security so you cannot turn it on if you have disabled the security module.

5

Screenshot 2024-04-12 122759
Thank you, Tim for the reply

I am accessing one of the node with https from the browser as below

It throwing error as "This site can't provide a secure connection. ERR_SSL_PROTOCAL_ERROR"

6

I want to enable HTTPS without using all the security features. Can't I achieve this by enabling only xpack.security.http.ssl: enabled: true and disabling security with xpack.security.enabled ?"

7

No, because xpack.security.enabled: false means disable the security component of elasticsearch and the security component is what provides HTTPS.

If you want SSL then you need to leave the security component enabled.

You can enable anonymous authentication if you wish to bypass authentication (but we do not recommend that).

But I have to ask, why do you want SSL if you don't want any other security features? Why encrypt network communications if you're leaving the whole server unprotected?

8

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.