Use .cer file ( security certifciates ) with default elastic search installation

I have been provided 3 certificate files from one of the providers
intermediate.cer
root.cer
main.cer

I want to use the above in my default elasticsearch deployment.
Currently http.p12 is being used ( default)

You will need a private key for the main.cer - do you have one?

Yes. I have been provided pkcs8 key file..

What config changes would i need

The files you have are PEM encoded files.

You can use the settings described here: Security settings in Elasticsearch | Elasticsearch Guide [8.7] | Elastic to configure your nodes to use PEM certificates + keys for TLS on the HTTP port.

Thanks for the info.

I have used below settings and got the ES stack up.
xpack.security.http.ssl.enabled: true
xpack.security.http.ssl.key:
xpack.security.http.ssl.certificate: certs/main.cer

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.