Kibana logging errors after SSl configuration

stack-security
(fayaz) #1

Hi

I have enabled SSL on kibana. I have added the pem certificate and key as suggested in the documentation page. After restart the kibana loads but I see many errors in logs.

The only different thing I did here is converted PFX file to pem and added it to kibana.yml file.

server.ssl.enabled: true
server.ssl.certificate: /cert/wildcard_com.pem
server.ssl.key: /cert/wildcard_com.key



{"type":"log","@timestamp":"2019-05-10T23:32:35Z","tags":["listening","info"],"pid":6732,"message":"Server running at https://0.0.0.0:5601"}
{"type":"error","@timestamp":"2019-05-10T23:32:39Z","tags":["connection","client","error"],"pid":6732,"level":"error","error":{"message":"140134915241856:error:1408F09C:SSL routines:ssl3_get_record:http request:../deps/openssl/openssl/ssl/record/ssl3_record.c:242:\n","name":"Error","stack":"Error: 140134915241856:error:1408F09C:SSL routines:ssl3_get_record:http request:../deps/openssl/openssl/ssl/record/ssl3_record.c:242:\n"},"message":"140134915241856:error:1408F09C:SSL routines:ssl3_get_record:http request:../deps/openssl/openssl/ssl/record/ssl3_record.c:242:\n"}
{"type":"error","@timestamp":"2019-05-10T23:32:51Z","tags":["connection","client","error"],"pid":6732,"level":"error","error":{"message":"140134915241856:error:1408F09C:SSL routines:ssl3_get_record:http request:../deps/openssl/openssl/ssl/record/ssl3_record.c:242:\n","name":"Error","stack":"Error: 140134915241856:error:1408F09C:SSL routines:ssl3_get_record:http request:../deps/openssl/openssl/ssl/record/ssl3_record.c:242:\n"},"message":"140134915241856:error:1408F09C:SSL routines:ssl3_get_record:http request:../deps/openssl/openssl/ssl/record/ssl3_record.c:242:\n"}
{"type":"error","@timestamp":"2019-05-10T23:33:03Z","tags":["connection","client","error"],"pid":6732,"level":"error","error":{"message":"140134915241856:error:1408F09C:SSL routines:ssl3_get_record:http request:../deps/openssl/openssl/ssl/record/ssl3_record.c:242:\n","name":"Error","stack":"Error: 140134915241856:error:1408F09C:SSL routines:ssl3_get_record:http request:../deps/openssl/openssl/ssl/record/ssl3_record.c:242:\n"},"message":"140134915241856:error:1408F09C:SSL routines:ssl3_get_record:http request:../deps/openssl/openssl/ssl/record/ssl3_record.c:242:\n"}
{"type":"error","@timestamp":"2019-05-10T23:33:15Z","tags":["connection","client","error"],"pid":6732,"level":"error","error":{"message":"140134915241856:error:1408F09C:SSL routines:ssl3_get_record:http request:../deps/openssl/openssl/ssl/record/ssl3_record.c:242:\n","name":"Error","stack":"Error: 140134915241856:error:1408F09C:SSL routines:ssl3_get_record:http request:../deps/openssl/openssl/ssl/record/ssl3_record.c:242:\n"},"message":"140134915241856:error:1408F09C:SSL routines:ssl3_get_record:http request:../deps/openssl/openssl/ssl/record/ssl3_record.c:242:\n"}
(Tyler Smalley) #2

This error is from the connection to Elasticsearch. Is it possible that Elasticsearch is being served with SSL, but you're using http when defining the Elasticsearch node to connect to?

(fayaz) #3

No, Elastic search is not using SSL. I just configured kibana on SSL.

(Tyler Smalley) #4

What version of Kibana is this? Maybe I have it backwards and you're requesting Kibana over http?

(fayaz) #5

I am using kibana and ES both as Version 7. I am accessing kibana as https.

(Tim Vernum) #6

Can you provide your Kibana configuration?
My guess is that you've accidentally configured Kibana in a way that's enabling SSL when it connects to Elasticsearch.

(fayaz) #7

@TimV here is my configuration. This is my complete kibana.yml configuration.

server.host: "0.0.0.0"
elasticsearch.hosts: ["http://localhost:9200"]
server.ssl.enabled: true
server.ssl.certificate: /cert/wildcard_ags_com.pem
server.ssl.key: /cert/wildcard_ags_com.key
logging.quiet: true
(fayaz) #8

@TimV Any idea why its throwing those errors. If you need any more details I can forward you.