I want to take snapshots of my ElasticSearch Index and use MiniO instance running on a remote machine as storage. My ES instance (7.6.0) is ran locally, using JDK 13.
I can access the miniO storage through my browser just fine.
I have already added the certs used by MiniO into my Jdk truststore like so,
keytool -import -trustcacerts -storepass xxx -alias test_minio_trust -file rootCA.crt -keystore truststore_root_minio.jks
However, when I try to create repo:
{
"type": "s3",
"settings": {
"bucket": "esrepo",
"base_path": "",
"endpoint": "<remote_ip>:9000/",
"protocol": "https"
}
}
I get:
{
"error" : {
"root_cause" : [
{
"type" : "repository_verification_exception",
"reason" : "[my_backup] path is not accessible on master node"
}
],
"type" : "repository_verification_exception",
"reason" : "[my_backup] path is not accessible on master node",
"caused_by" : {
"type" : "i_o_exception",
"reason" : "Unable to upload object [tests-lPkWVIy5RqmHems-7KvT9w/master.d
at] using a single upload",
"caused_by" : {
"type" : "sdk_client_exception",
"reason" : "Unable to execute HTTP request: PKIX path building failed: s
un.security.provider.certpath.SunCertPathBuilderException: unable to find valid
certification path to requested target",
"caused_by" : {
"type" : "s_s_l_handshake_exception",
"reason" : "PKIX path building failed: sun.security.provider.certpath.
SunCertPathBuilderException: unable to find valid certification path to requeste
d target",
"caused_by" : {
"type" : "validator_exception",
"reason" : "PKIX path building failed: sun.security.provider.certpat
h.SunCertPathBuilderException: unable to find valid certification path to reques
ted target",
"caused_by" : {
"type" : "sun_cert_path_builder_exception",
"reason" : "unable to find valid certification path to requested t
arget"
}
}
}
}
}
},
"status" : 500
}
Which seems like a cert validation error to me. I am using a self-signed cert but my impression is that adding the cert to JDK is suppose to eliminate validation errors. What am I doing wrong? Is ES not picking up the cert?