Handshake... ERROR x509: certificate signed by unknown authorityhandshake

version:7.17.9

filebeat command:filebeat test output
elasticsearch: https://10.202.250.243:9200...
parse url... OK
connection...
parse host... OK
dns lookup... OK
addresses: 10.202.250.243
dial up... OK
TLS...
security: server's certificate chain verification is enabled
handshake... ERROR x509: certificate signed by unknown authority

/etc/filebeat/filebeat.yml

/etc/elasticsearch/elasticsearch.yml

Hey welcome on the forum.

I think you can resolve this by setting output.elasticsearch.ssl.certificate_authorities or output.elasticsearch.ssl.verification_mode: none in the Filebeat.yml see the documentation here. In production, I would recommend using the first option.

Tim

1 Like

thank you for your reply, i decide renew some certificates for instance.yml。maybe it is useful

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.