I have been provided 3 certificate files from one of the providers
intermediate.cer
root.cer
main.cer
I want to use the above in my default elasticsearch deployment.
Currently http.p12 is being used ( default)
I have been provided 3 certificate files from one of the providers
intermediate.cer
root.cer
main.cer
I want to use the above in my default elasticsearch deployment.
Currently http.p12 is being used ( default)
You will need a private key for the main.cer
- do you have one?
Yes. I have been provided pkcs8 key file..
What config changes would i need
The files you have are PEM encoded files.
You can use the settings described here: Security settings in Elasticsearch | Elasticsearch Guide [8.7] | Elastic to configure your nodes to use PEM certificates + keys for TLS on the HTTP port.
Thanks for the info.
I have used below settings and got the ES stack up.
xpack.security.http.ssl.enabled: true
xpack.security.http.ssl.key:
xpack.security.http.ssl.certificate: certs/main.cer
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.