How to use Elastic Search CA Cert with OpenTelemetry?

stephenb · October 25, 2023, 4:43am

Interesting Solved... so what ca_file wants is Full Chain Cert (which is not clear what they are asking for normal a CA file is JUST the CA) .. so IMHO OTEL should specific that it wants a full chain certificate or this is some sort of bug

I got it to work.

So what I did is use Chrome and downloaded the full cert then set it as the ca_file and it connected ... I am not sure this adds any additional security.

then I set the cert

    tls:
      insecure: false
      ca_file: test.cer

and the collector connected without the error!

Topic		Replies	Views
Failing TLS handshake between OpenTelemetry and ElasticSearch using ES CA Cert Elastic Observability elastic-stack-alerting , docker	0	577	October 23, 2023
Can't connect OpenTelemetry collector with APM Server APM elastic-stack-security , docker , open-telemetry	1	1088	November 13, 2023
Secure connection on HTTP layer Elasticsearch elastic-stack-security	14	8126	September 3, 2019
Opentelemetry agent unable to connect APM Server over secure connection APM server	9	7344	August 24, 2021
Elastic-agent-complete->x509: certificate signed by unknown authority Elasticsearch elastic-stack-monitoring , docker	10	304	March 1, 2025

How to use Elastic Search CA Cert with OpenTelemetry?

Related topics