Secure logstash connection to elasticsearch

PeroWong · July 1, 2023, 1:22pm

I follow the tutorial(Install Elasticsearch with Docker | Elasticsearch Guide [8.8] | Elastic) creating certs in the docker-compose.yml services setup.

And I follow the guide to config logstash scure Secure your connection to Elasticsearch | Logstash Reference [8.8] | Elastic

output {
  elasticsearch {
    hosts => ["https://...] 
    cacert => "/usr/share/logstash/certs/ca/ca.crt"
  }
}

and mount the volum in the docker-compose.yml.

logstash:
    volumes:
      - certs:/usr/share/logstash/config/certs
...

When I start the logstash, it says File does not exist or cannot be opened /usr/share/logstash/config/certs/ca/ca.crt

But I enter the logstash container, the /usr/share/logstash/config/certs dir has been there.
When I cd /usr/share/logstash/config/certs, it says "bash: cd:/usr/share/logstash/config/certs: Permission denied".

I guss this is the reason why it occurred the error that "File does not exist or cannot be opened /usr/share/logstash/config/certs/ca/ca.crt".

So, how could I solve this problem.

carly.richmond · July 3, 2023, 10:12am

Hi @PeroWong,

Welcome to the community! It does look to me like a permissions issue as you say. Can you check the file permissions on the certs file to ensure logstash has access to the folder and file?

Topic		Replies	Views
Docker - Setup Generated Certs - Logstash Permission Denied Logstash docker	2	1021	April 28, 2022
Configure Logstash to connect to Elasticsearch as output Logstash elastic-stack-security	4	1051	November 24, 2022
Regarding the logstash cacerts issue Kibana	2	523	April 19, 2024
Cacert can not access credentials logstash Logstash elastic-stack-security , docker	1	1763	May 14, 2022
Logstash problems with certs - docker-compose Logstash docker	2	1209	November 16, 2022

Secure logstash connection to elasticsearch

Related topics