java.lang.IllegalArgumentException: Setting [xpack.security.transport.ssl.keystore.path] is a non-secure setting and must be stored inside elasticsearch.yml, but was found inside the Elasticsearch keystore

Why after run:

./bin/elasticsearch-certutil http

  • folder master:
total 12
-rwxr-xr-x 1 root elasticsearch 3620 May 17 17:24 http.p12
-rwxr-xr-x 1 root elasticsearch 1365 May 17 17:24 README.txt
-rwxr-xr-x 1 root elasticsearch  849 May 17 17:24 sample-elasticsearch.yml

-folder data:

total 12
-rwxr-xr-x 1 root elasticsearch 3620 May 17 17:24 http.p12
-rwxr-xr-x 1 root elasticsearch 1365 May 17 17:24 README.txt
-rwxr-xr-x 1 root elasticsearch  849 May 17 17:24 sample-elasticsearch.yml

I am copy folder data to node data in cluster and config:

Error start service:

java.lang.IllegalArgumentException: Setting [xpack.security.transport.ssl.keystore.path] is a non-secure setting and must be stored inside elasticsearch.yml, but was found inside the Elasticsearch keystore
        at org.elasticsearch.common.settings.Setting.innerGetRaw(Setting.java:597) ~[elasticsearch-8.7.0.jar:?]
        at org.elasticsearch.common.settings.Setting.getRaw(Setting.java:583) ~[elasticsearch-8.7.0.jar:?]
        at org.elasticsearch.common.settings.Setting.get(Setting.java:516) ~[elasticsearch-8.7.0.jar:?]
        at org.elasticsearch.common.settings.Setting.get(Setting.java:512) ~[elasticsearch-8.7.0.jar:?]

I read Elasticsearch link: Set up basic security for the Elastic Stack plus secured HTTPS traffic | Elasticsearch Guide [8.7] | Elastic

Help me !!!

I think the error message is pretty clear. You need remove the said setting from the keystore file and configure it the inside elasticsearch.yml file.

You can remove it with

./bin/elasticsearch-keystore remove xpack.security.transport.ssl.keystore.path

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.