SHA2 cert on 4.6.4 kibana

I have a newly created certificate that I want to use to secure browser-to-kibana communication. Our previous cert was sha1 and the new one is sha2 and it is issued by a different certificate authority. After editing the kibana.yml and restarting kibana I get an error saying the certificate is not trusted and offering the "I understand the risk" option of adding an exception, something I don't want to have to do.

A couple things cross my mind:

  1. is kibana 4.6.4 capable of using a sha2 cert?
  2. does my truststore have my new certificate authority? I suspect not but I don't know what truststore is being used. How do I determine which truststore I need to upgrade?

Craig

This might depend on who you got your certificate from. I don't know a lot about this but you might have to bundle that cert and others together. Maybe this would help;

But my understanding is that Kibana would just send info about the cert you configured to the user's browser, and it's that browser (not Kibana) that is trying to reconcile the chain of certs to some authority.

Regards,
Lee

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.