No name matching found

I have configured the ssl certificate for my es, but when I want to reset the password, this exception occurs. I am sure that the"" in the url I entered is my domain name used to generate the certificate , why is such an exception reported:

org.elasticsearch.common.ssl.DiagnosticTrustManager - failed to establish trust with server at []; the server provided a certificate with subject name [CN=instance], fingerprint [6d09b19661cf05f7c93c2cde2b02e824582e974b ], no keyUsage and no extendedKeyUsage; the session uses cipher suite [TLS_AES_256_GCM_SHA384] and protocol [TLSv1.3]; the certificate does not have any subject alternative names; the certificate is issued by [CN=Elastic Certificate Tool Autogenerated CA]; the certificate is signed by (subject [CN=Elastic Certificate Tool Autogenerated CA] fingerprint [f77c65e09106ec599b9524d8a90d15237d33db83] {trusted issuer}) which is self-issued; the [CN=Elastic Certificate Tool Autogenerated CA] certificate is trusted in this ssl context ([xpack .security.http.ssl (with trust configuration: StoreTrustConfig{path=certs/elastic-certificates.p12, password=<non-empty>, type=PKCS12, algorithm=PKIX})])

Can you share the relevant configuration from elasticsearch.yml file? My guess is that you have full

while it should be certificate

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.