Hi Team,
I have deployed ECK 2.11 on AWS EKS.
I have used elastic and kibana resource files as given in official quickstart documentation. I am exposing Kibana and elasticsearch externally using domain names and have created certificate using well known CA.
Below are yml's of elasticsearch and Kibana.
apiVersion: elasticsearch.k8s.elastic.co/v1
kind: Elasticsearch
metadata:
name: quickstart
labels:
app: elastic
spec:
version: 8.12.0
http:
tls:
certificate:
secretName: my-cert
monitoring:
metrics:
elasticsearchRefs:
- name: elasticsearch
logs:
elasticsearchRefs:
- name: elasticsearch
nodeSets:
- name: default
count: 3
config:
node.store.allow_mmap: false
xpack.security.audit.enabled: false
node.store.allow_mmap: false
podTemplate:
spec:
initContainers:
- name: sysctl
securityContext:
privileged: true
runAsUser: 0
command: ['sh', '-c', 'sysctl -w vm.max_map_count=262144']
volumes:
- name: elasticsearch-data
emptyDir: {}
apiVersion: kibana.k8s.elastic.co/v1
kind: Kibana
metadata:
name: quickstart
labels:
app: kibana
spec:
version: 8.12.0
http:
tls:
certificate:
secretName: my-cert
selfSignedCertificate:
disabled: true
count: 3
elasticsearchRef:
name: quickstart
I am able to access elasticsearch on external domain name.
But for Kibana I get this error:
Unable to retrive version Informaion from Elasticsearch, unable to verify the first certificate
This is a POC and will be impacting our delivery and the option of going with Elastic Licence or not?