Upgrade from 7.16.2 to 7.171.7

Hi, I have a three-node cluster version 716.2 and I want to upgrade it to 7.17.7. in my current cluster, TLS setting is activated by following:

xpack.security.enabled: true
xpack.security.transport.ssl.enabled: true
xpack.security.transport.ssl.verification_mode: certificate 
xpack.security.transport.ssl.keystore.path: elastic-certificates.p12 
xpack.security.transport.ssl.truststore.path: elastic-certificates.p12
xpack.security.http.ssl.enabled: true
xpack.security.http.ssl.keystore.path: http.p12

in the case of upgrading in this [link] (Rolling upgrades | Elasticsearch Guide [7.17] | Elastic), it is said that we should copy old config folder data to the new elasticsearch config file. it means we should also copy lastic-certificates.p12 , http.p12 ,role_mapping, role.yml, users, users_roles , ... files. Is it true?
Also, when we were installing elasticsearch 7.16.2, we use below commands to set keystore password, Is it needed to do them again in the new version?

elasticsearch-keystore add xpack.security.transport.ssl.keystore.secure_password
elasticsearch-keystore add xpack.security.transport.ssl.truststore.secure_password
elasticsearch-keystore add xpack.security.http.ssl.keystore.secure_password

I will be so appreciated of your helpful guide
Regards

How did you install Elasticsearch?

Hi
first I installed elasticsearch 7.16.2 in three windows servers and config the elasticsearch.yml to create the desired cluster as below

cluster.name
node.name
network.host
discovery.seed_hosts
cluster.initial_master_nodes

then I started the nodes and cluster state was green.
at the next step I created the certificate base on link and then I start the cluster and every thing was ok.
at the next step I did the steps of link to setup https.

Ok you used the zip.

In that case;

Yes you need to do that.

thanks

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.