Open V1D1AN opened 3 years ago
Hello,
From my experience, my application.conf file mounted on Cortex Container uses these parameters :
search {
index = your_cortex_index
uri = "https://node1:9200,node2:9200"
user = you_cortex_user
password = your_cortex_user_password
keyStore {
path = "/path/to/keystore_file"
type = "keystore_type" # JKS or PKCS12
password = "keystore_password"
}
trustStore {
path = "/path/to/truststore_file"
type = "truststore_type" # JKS or PKCS12
password = "truststore_password"
}
}
As you can see, I had to use both trustStore AND keyStore to make Cortex reach ES with SSL. My keystore is empty but I had to configure it so that Cortex uses the trustStore (which contains ES nodes certificates and the CA). If you never used those before, maybe this should help : https://docs.oracle.com/cd/E19509-01/820-3503/6nf1il6er/index.html
Hope that helps :)
Interesting I have a similar problem and will try your approach.
Cortex with Elasticsearch SSL
Request Type
Bug
Work Environment
Problem Description
In the documentation, i follow the configuration of Elasticsearch with SSL X-PACK but it don't work for me.
Extract of application.conf for cortex:
Extract of my docker-compose:
I have this error:
For working, I must do:
Question; What is the good configuration for configuring the CA certificate without doing the docker exec
Please