We are using the transport client with TLS enabled and without mutual authentication. This worked fine with ES 6.8.3, but after upgrading to 7.5, we receive an error "No cipher suites in common".
This is the configuration on the server side:
transport.profiles.client: port: 9500 xpack.security: type: client ssl.client_authentication: none
And this is the output of openssl when trying to connect:
CONNECTED(00000003) 140359740032256:error:14094410:SSL routines:ssl3_read_bytes:sslv3 alert handshake failure:ssl/record/rec_layer_s3.c:1543:SSL alert number 40 --- no peer certificate available --- No client certificate CA names sent --- SSL handshake has read 7 bytes and written 327 bytes Verification: OK --- New, (NONE), Cipher is (NONE) Secure Renegotiation IS NOT supported Compression: NONE Expansion: NONE No ALPN negotiated Early data was not sent Verify return code: 0 (ok) ---
Maybe the "ssl.client_authentication" switch is not working as intended anymore. Did anything change in regards of TLS with ES 7.x?