Kibana is not connecting to Elasticsearch when providing own Certificate

Hi Team,

I have deployed ECK 2.11 on AWS EKS.
I have used elastic and kibana resource files as given in official quickstart documentation. I am exposing Kibana and elasticsearch externally using domain names and have created certificate using well known CA.

Below are yml's of elasticsearch and Kibana.

apiVersion: elasticsearch.k8s.elastic.co/v1
kind: Elasticsearch
metadata:
  name: quickstart
  labels:
    app: elastic
spec:
  version: 8.12.0
  http:
    tls:
      certificate:
        secretName: my-cert
  monitoring:
    metrics:
      elasticsearchRefs:
      - name: elasticsearch
    logs:
      elasticsearchRefs:
      - name: elasticsearch
  nodeSets:
  - name: default
    count: 3
    config:
      node.store.allow_mmap: false
      xpack.security.audit.enabled: false
      node.store.allow_mmap: false
    podTemplate:
      spec:
        initContainers:
        - name: sysctl
          securityContext:
            privileged: true
            runAsUser: 0
          command: ['sh', '-c', 'sysctl -w vm.max_map_count=262144']
        volumes:
        - name: elasticsearch-data
          emptyDir: {}
apiVersion: kibana.k8s.elastic.co/v1
kind: Kibana
metadata:
  name: quickstart
  labels:
    app: kibana
spec:
  version: 8.12.0
  http:
    tls:
      certificate:
        secretName: my-cert
      selfSignedCertificate:
        disabled: true
  count: 3
  elasticsearchRef:
    name: quickstart

I am able to access elasticsearch on external domain name.
But for Kibana I get this error:

Unable to retrive version Informaion from Elasticsearch, unable to verify the first certificate

This is a POC and will be impacting our delivery and the option of going with Elastic Licence or not?

@Vineeth_varma were you able to make it work in your cluster?

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.