ERROR [publisher_pipeline_output] pipeline/output.go:154 Failed to connect to backoff(async(tcp://localhost:5044)): x509: certificate signed by unknown authority
So the certificates were generated both from the same CA key, and I'm pointing the config to that key but I'm still getting x509: certificate signed by unknown authority. Am I missing a step here for getting this working with self signed certificates?
The documentation here for verification_mode specifies that the certificate verification mode Verifies that the provided certificate is signed by a trusted authority (CA), but does not perform any hostname verification. So this should be a working configuration. Did I miss a step here?
I figured it out. The way I was generating certificates wasn't enough. You need to make sure the keys have the correct Key Usage and Extended Key Usage.
The correct way to generate the certificates is as follows: server.conf:
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant
logo are trademarks of the
Apache Software Foundation
in the United States and/or other countries.