Secure logstash connection to elasticsearch

PeroWong · July 1, 2023, 1:22pm

I follow the tutorial(Install Elasticsearch with Docker | Elasticsearch Guide [8.8] | Elastic) creating certs in the docker-compose.yml services setup.

And I follow the guide to config logstash scure Secure your connection to Elasticsearch | Logstash Reference [8.8] | Elastic

output {
  elasticsearch {
    hosts => ["https://...] 
    cacert => "/usr/share/logstash/certs/ca/ca.crt"
  }
}

and mount the volum in the docker-compose.yml.

logstash:
    volumes:
      - certs:/usr/share/logstash/config/certs
...

When I start the logstash, it says File does not exist or cannot be opened /usr/share/logstash/config/certs/ca/ca.crt

But I enter the logstash container, the /usr/share/logstash/config/certs dir has been there.
When I cd /usr/share/logstash/config/certs, it says "bash: cd:/usr/share/logstash/config/certs: Permission denied".

I guss this is the reason why it occurred the error that "File does not exist or cannot be opened /usr/share/logstash/config/certs/ca/ca.crt".

So, how could I solve this problem.

carly.richmond · July 3, 2023, 10:12am

Hi @PeroWong,

Welcome to the community! It does look to me like a permissions issue as you say. Can you check the file permissions on the certs file to ensure logstash has access to the folder and file?

system · July 31, 2023, 10:12am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Docker - Setup Generated Certs - Logstash Permission Denied Logstash docker	2	912	April 28, 2022
Cacert can not access credentials logstash Logstash elastic-stack-security , docker	1	1683	May 14, 2022
I tried to use elastic search from docker (version 8.7.1) Kibana docker	1	220	August 18, 2023
Elasticsearch container exists with no logs Elasticsearch	2	759	November 15, 2018
Fail to read ssl configuration Elasticsearch elastic-stack-security , docker	2	2046	June 22, 2022

Secure logstash connection to elasticsearch

Related topics