Talk:OpenSearch Cluster Monitoring

From WilliamsNet Wiki
Revision as of 02:26, 18 November 2021 by DrEdWilliams (talk | contribs) (Created page with "To enable cerebro to use self-signed certs (or non-publsihed CAs) I did the following : in the application.conf ( with rpm at /etc/cerebro ), add the following to the end :...")
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigation Jump to search

To enable cerebro to use self-signed certs (or non-publsihed CAs)

I did the following :

in the application.conf ( with rpm at /etc/cerebro ), add the following to the end : 

play.ws.ssl {
  trustManager = {
    stores = [
      { type = "PEM", path = "/etc/cerebro/elastic-stack-ca.pem" }
    ]
  }
}     
play.ws.ssl.loose.acceptAnyCertificate=true

the pem file is the CA cert in PEM format. You can probably also use the CA p12 file used to setup ES security, but then change the 'type = "PEM"' part to 'type = "pkcs12"'

And (re)start Cerebro.

Retrieved from "http://wiki.williams-net.org/index.php?title=Talk:OpenSearch_Cluster_Monitoring&oldid=629"