Hello forum members,
I'm new to Elasticsearch and Kibana, and I'm currently trying to set up a secure connection (HTTPS) between Elasticsearch and Kibana. I've generated the necessary certificates using elasticsearch-certutil, but I'm encountering some issues.
Here's my current configuration:
Elasticsearch:
- Image: elasticsearch:8.8.1
- Environment variables:
discovery.type=single-nodeELASTIC_PASSWORD=changemexpack.security.enabled=truexpack.security.http.ssl.enabled=truexpack.security.http.ssl.keystore.path=/usr/share/elasticsearch/config/certs/elastic-certificates.p12xpack.security.http.ssl.truststore.path=/usr/share/elasticsearch/config/certs/elastic-certificates.p12xpack.security.http.ssl.verification_mode=none
- Ports: 9200:9200
- Volumes:
./certs:/usr/share/elasticsearch/config/certs
Kibana:
- Image: kibana:8.8.1
- Environment variables:
ELASTICSEARCH_HOSTS=https://es:9200ELASTICSEARCH_USERNAME=kibana_systemELASTICSEARCH_PASSWORD=changeme(I changed it withelasticsearch-setup-passwords interactive)server.ssl.enabled=trueserver.ssl.keystore.path="/usr/share/kibana/config/certs/kibana-certificates.p12"elasticsearch.ssl.certificateAuthorities=["/usr/share/kibana/config/certs/elastic-stack-ca.p12"]elasticsearch.ssl.verificationMode=none
- Ports: 5601:5601
- Volumes:
./certs:/usr/share/kibana/config/certs - Depends on: Elasticsearch
Networks:
elasticdriver: bridge
The problem I'm facing is error message: "Unable to retrieve version information from Elasticsearch nodes. self signed certificate in certificate chain."
and when I try to access Kibana via https://localhost:5601/ no page exists , When I use http://localhost:5601/, I get "Kibana server is not ready yet."
I've tried changing the certificateAuthorities to certificate, but the issue persists.
I'd appreciate any guidance or insights into what might be causing this problem and how to resolve it. If you need any additional information or configurations, please let me know.
Thank you for your help!