Thanks Julia! This was a question that I posted earlier and it was answered by a few people:
How can I prevent other elasticsearch nodes from joining my cluster. Let's say I initiate a single node elastic cluster like this:
(Notice I am using letsencrypt ssl certificates)
cluster.initial_master_nodes: ["node1"]
cluster.name: my-application
node.name: node1
path.data: /var/lib/elasticsearch
path.logs: /var/log/elasticsearch
network.host: node1.example.com
http.port: 9200
xpack.security.enabled: true
xpack.security.enrollment.enabled: true
xpack.security.http.ssl:
enabled: true
key…
I wasn't sure if similar situation would happen with elastic agents and fleet servers?
If the certs were by signed by a public CA, would that cause any concerns for ES nodes/agents?