Verify PKI enabling in elastic nodes

B123 · February 6, 2019, 10:29am

Hi ,
@ikakavas
As i have mentioned earlier, my elasticsearch instance already runs with a Server certificate ,a private key and Root CA certificate used in elasticsearch .yml config
xpack.security.transport.ssl.key:
xpack.security.transport.ssl.certificate:
xpack.security.transport.ssl.certificate_authorities:

xpack.security.http.ssl.key: private.key
xpack.security.http.ssl.certificate:
xpack.security.http.ssl.certificate_authorities:

These certificates have already been created and kept in place. So please let me know how do i use these certificates for PKI (or change the existing certificates if needed)

ikakavas · February 6, 2019, 10:54am

Sharing just the keys of the configuration you use is not very helpful as we cant guess what the value is or how you created these files. As I said above you need your CA key and cert. Do you have them ?

If not, you need to recreate them. Our documentation is very detailed https://www.elastic.co/guide/en/x-pack/6.2/ssl-tls.html there is no point duplicating it here. Please rad through it and let us know if you have any concrete questions.

Topic		Replies	Views
How to authenticate user to elasticsearch based on PKI Elasticsearch elastic-stack-security	18	5268	July 5, 2019
Elasticsearch security PKI Elasticsearch elastic-stack-security	13	2306	September 19, 2019
Elasticsearch SSL/TLS PKI realm setup Elasticsearch elastic-stack-security	14	2081	April 6, 2021
Configure PKI authentication for Elasticsearch 7.7 Elasticsearch elastic-stack-security	13	1400	January 10, 2023
[x-pack] enabled: Unable to communicate to Elasticsearch using only cacert from client machines Elasticsearch elastic-stack-security	19	3342	September 6, 2019

Verify PKI enabling in elastic nodes

Related topics