Why do I have to put the tls certificate in the elasticsearch path?
I use the same credentials with kubernetes.
At this point, I do not understand why I need to move the root certificate path into elasticsearch.
Why is it supposed to be a security reason?
Elasticsearch uses the Java Security Manager. That one is configured to be only able to read certain directories in the file system - so if there is a security issue in the Elasticsearch code base, an attacker could not use this to read arbitrary files. Because of this mechanism you need to put your certificate files in the config directory.
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.