I wanted to try out enabling TLS on a 3 node ELK 5.5.2 cluster. So I created a CSR with certgen and issued a certificate from our PKI. All good so far,.
I have these settings in my elasticsearch.yml
xpack.security.enabled : false
xpack.monitoring.enabled : true
xpack.graph.enabled : false
xpack.watcher.enabled : false
When security is disabled like that, does that prevent me from enabling like this ?? :;
xpack.ssl.certificate_authorities: [ "c:\elastic\elasticsearch\config\x-pack\myrootca.cer" ]
When I connect to http://localhost:9200 , I dont see any active certificate.
It doesnt complain about anything when I restarted the cluster , but I am not sure, whether TLS is actually active or not , because security is disabled generally.Is there some way of verying TLS?