Hi Team,
I am trying to add my org certificate (.pfx) to elastic security so we can securely access it from other servers. i am not able to import it in existing CA cert.
Could any one please tell me how to add it in existing (Basic security) configuration
Please provide more details about your current configuration, the structure of your org certificate and what exactly you're trying to change.
The pfx format contains the public and the private key. You should use openssl to export.
openssl pkcs12 -in [yourfile.pfx] -nocerts -out [private.key]
openssl pkcs12 -in [yourfile.pfx] -clcerts -nokeys -out [public.crt]
openssl rsa -in [private.key] -out [private-decrypted.key]
xpack.security.transport.ssl.enabled: true
xpack.security.transport.ssl.verification_mode: certificate
xpack.security.transport.ssl.client_authentication: required
xpack.security.transport.ssl.keystore.path: elastic-certificates.p12
xpack.security.transport.ssl.truststore.path: elastic-certificates.p12
xpack.security.transport.ssl.truststore.secure_password: ""
xpack.security.transport.ssl.keystore.secure_password: ""
xpack.security.http.ssl.enabled: true
xpack.security.http.ssl.keystore.secure_password : "***"
xpack.security.http.ssl.keystore.path: "http.p12
this is my current configuration
I asked for multiple pieces of information. I cannot help without that information.
The org certificate contains root and issuer.. Its a pfx certificate.. I am trying to import this org cert into my elk so other application from other server of my org can use and connect elk
You cannot import as pfx AFAIK. You should use two separated keys.
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.