The certificate is not trusted elasticsearch, but I do have the SSL certificates

Xavier_Font · July 8, 2022, 12:28am

when trying to access endpoints of my self-hosted elasticsearch,

On Safari I https://i.stack.imgur.com/YA6Be.png)](https://i.stack.imgur.com/YA6Be.png

And on my Rust client I get code: -67843, message: "The certificate was not trusted.

However when I request information from the https://localhost:9200/_ssl/certificatesendpoint on postman (which accepts invalid certs) I get an array full of certs:

[
    {
        "path": "certs/http.p12",
        "format": "PKCS12",
        "alias": "http",
        "subject_dn": "CN=05eeab4fdxxx",
        "serial_number": "5126e9dc2658e8xxxxxxxxxxxxxxx",
        "has_private_key": true,
        "expiry": "2024-06-26T19:29:39.000Z"
    },
    {
        "path": "certs/http.p12",
        "format": "PKCS12",
        "alias": "http",
        "subject_dn": "CN=Elasticsearch security auto-configuration HTTP CA",
        "serial_number": "ca270f5cdc32982970c192c6cxxxxxxxxxxxx",
        "has_private_key": false,
        "expiry": "2025-06-26T19:29:39.000Z"
    },
    {
        "path": "certs/http.p12",
        "format": "PKCS12",
        "alias": "http_ca",
        "subject_dn": "CN=Elasticsearch security auto-configuration HTTP CA",
        "serial_number": "ca270f5cdc32982970c192c6c25xxxxxxxxxxxxxx",
        "has_private_key": true,
        "expiry": "2025-06-26T19:29:39.000Z"
    },
    {
        "path": "certs/transport.p12",
        "format": "PKCS12",
        "alias": "transport",
        "subject_dn": "CN=Elasticsearch security auto-configuration HTTP CA",
        "serial_number": "19c5505398d30c56b0ea320exxxxxxxxxx",
        "has_private_key": false,
        "expiry": "2121-06-03T19:29:36.000Z"
    },
    {
        "path": "certs/transport.p12",
        "format": "PKCS12",
        "alias": "transport",
        "subject_dn": "CN=05eeab4fd435",
        "serial_number": "eb743df4612a20b23d3exxxxxxxxxxxx",
        "has_private_key": true,
        "expiry": "2121-06-03T19:29:38.000Z"
    },
    {
        "path": "certs/transport.p12",
        "format": "PKCS12",
        "alias": "transport_ca",
        "subject_dn": "CN=Elasticsearch security auto-configuration HTTP CA",
        "serial_number": "19c5505398d30c56b0eaxxxxxxxxxxxx",
        "has_private_key": false,
        "expiry": "2121-06-03T19:29:36.000Z"
    }
]

Meaning I do have SSL certs up and running, I would guess. So how can I solve this problem?

FOR THE SAME QUESTION IN STACK OVERFLOW The certificate is not trusted elasticsearch, but I do have the SSL certificates - Stack Overflow

system · August 5, 2022, 12:28am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Invalid Certificate Errors when setting up SSL/HTTPS for Elasticsearch in Docker Elasticsearch elastic-stack-security , docker	1	2146	October 21, 2020
ElasticSearch renew certificate errors Elasticsearch elastic-stack-security , docker	2	145	May 17, 2024
Logstash don't trust Elasticsearch's certificate Logstash docker	3	1523	May 13, 2020
Unable to connect to elastic search with certificates Elasticsearch docker	1	213	December 28, 2023
Http client did not trust this server's certificate from the browser Elasticsearch elastic-stack-security	3	3893	October 21, 2019

The certificate is not trusted elasticsearch, but I do have the SSL certificates

Related topics