search

freedomofpress / ansible-role-elk

Installs a turnkey ELK stack for log aggregation and analysis, with optional Riemann support for alerting
18 stars 13 forks source link

Manage external dependency on SSL gen role #2

Closed conorsch closed 8 years ago

conorsch commented 8 years ago

While writing the tests, had to isolate the ELK config enough that the external dependency on generate-ssl-cert was obvious. The role is used to generate self-signed SSL certificates for encrypting the logs in transit.

It does not provide mutual-auth SSL keypairs for client authentication, because logstash and libbeat don't support that yet. Instead, the elk role whitelists IPs for hosts in the logclients group.

Add the external dependency to the test harness and continue.

conorsch commented 8 years ago

Resolved via #4 (also add to README)