Hello NewmazN24,
I apologize for not being more specific the chown -R elasticsearch:root /usr/share/elasticsearch/* is not a good practice i think, a best practice is to chown the certificate only so you don't change the predefined parameters.
You should also put your certificates in /etc/elasticsearch/ so the elasticsearch service can access it.
did you define a password when you create your certificate ?
can we have all yourelasticsearch.yml, the result of your sudo /usr/share/elasticsearch/bin/elasticsearch-keystore list and all the elasticsearch log 'starting when you restart your service'
Mehdi.