We are trying to do an integration of elasticsearch with Okta, we have succeded the integration for our development box, where we have not enabled any TLS/SSL.
But when do the integration for production setup, we are not able to succeed, have done all the configurations and while starting the service it fails, log says
[2020-09-22T06:38:17,612][WARN ][o.e.x.s.t.n.SecurityNetty4HttpServerTransport] [1.3.5.2] http client did not trust this server's certificate, closing connection Netty4HttpChannel{localAddress=/1.3.5.2:9200, remoteAddress=/1.4.2.9:65391}
I see there is some error with certificate, but i dont have knowledge on certificate part, can someone tell me where the certificate error, should i need to provide the certificate generated in elasticsearch and ask them to add in Okta
or should i need to get okta certificate and add it in elasticsearch.
or is there any other configurations i need to do.
This is my Okta configuration in elasticsearch.yml
The log you shared is from a client connection to elasticsearch, and the client does not trust the certificate that elasticsearch is presenting. This is unrelated to saml and okta.
If you still have this issue you should share your elasticsearch tls configuration and figure out what is running on 1.4.2.9 as this is what tries to connect and fails
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant
logo are trademarks of the
Apache Software Foundation
in the United States and/or other countries.