Hi Elastic Team,
One of the breaking changes from 6.2 to 6.3 is now the keystore gets created alongside elasticsearch.yml if the keystore doesn't exist yet.
Our elasticsearch.yml is stored on a read only filesystem (configured using path.conf setting) therefore the keystore creation fails.
The plan we have is to manually create a keystore, then put it on the same readonly filesystem alongside with elasticsearch.yml
There is one worry about this approach is whether Elasticsearch needs to modify the keystore at any point during its runtime? Because if it does it wouldn't be able to do the modification due to the filesystem being readonly.
I tried checking the docs by the docs don't have this information whether ES needs to modify keystore at any point - could you please advise?
Cheers,