I am trying to secure the Elastic APM server I use for Real User Monitoring.
Some snippets from different documentation
Elastic APM Server - SSL config - client_authentication
This option only needs to be configured when the agent is expected to provide a client certificate. Sending client certificates is currently only supported by the RUM agent through the browser and by the Jaeger agent.
Which suggests to me that this should be configurable in the RUM agent..? I can't find any mention of that in the RUM agent documentation.
Am I making wrong assumptions or looking in the wrong place in the docs?
There is also not anything resembling
server_name or anything like that which I'm used to configure for web servers when setting the domain name of the service and which is checked against the available certificate. Is the
server_name just taken from the POST request then? Looks like it from my initial tests...
All suggestions and tips are welcome