Hi,
I’m trying to configure a heartbeat http monitor to monitor a https URL protected by a client certificate. But it seems that I cannot get it working in a proper way.
I’ve tried serval configs listed below:
Config 1:
heartbeat.monitors:
- type: http
urls: ["https://URL.url"]
schedule: '@every 10s'
ssl:
certificate_authorities: ['ca.crt']
certificate: ['cert.crt']
key: ['key.key']
This results in that I can start the service but the http monitor fails with:
ERROR beater/manager.go:155 failed to load monitor tasks: can not convert 'object' into 'string' accessing 'ssl.certificate' (source:'C:\Program Files\Heartbeat\heartbeat.yml') when initializing monitor http(0)
Config 2:
heartbeat.monitors:
- type: http
urls: ["https://URL.url"]
schedule: '@every 10s'
ssl:
certificate_authorities: “ca.crt”
certificate: “cert.crt”
key: “'key.key”
This results in a complete failure of the service. (refuses to start)
Config 3: (Only using the CA as authenticator)
heartbeat.monitors:
- type: http
urls: ["https://url.url"]
schedule: '@every 10s'
ssl:
certificate_authorities: ['CA.crt']
This results in a start of the service and the http monitor functions.
But I’m getting a response: “x509: certificate signed by unknown authority”
Can somebody point out what I’m doing wrong?
Many thanks in advance!