When asking questions, please provide the following information:
* Search Guard and Elasticsearch version 6.6.0.
* Installed and used enterprise modules, if any
* JVM version and operating system version
* Search Guard configuration files
* Elasticsearch log messages on debug level
* Other installed Elasticsearch or Kibana plugins, if any
searchguard.ssl.transport.enabled: true
searchguard.ssl.transport.keystore_filepath: local-keystore.jks
searchguard.ssl.transport.truststore_filepath: local-truststore.jks
searchguard.ssl.http.enabled: true
searchguard.ssl.http.keystore_filepath: local-keystore.jks
searchguard.ssl.http.truststore_filepath: local-truststore.jks
searchguard.ssl.transport.enforce_hostname_verification: true
searchguard.ssl.transport.resolve_hostname: true
Hi,
We are currently evaluating search guard. Using self signed certificates. 3 Node cluster. Using truststore in the relative path of /etc/elasticsearch and we are currently getting the below error.
io.netty.handler.codec.DecoderException: java.lang.RuntimeException: Unexpected error: java.security.InvalidAlgorithmParameterException: the trustAnchors parameter must be non-empty
Not sure how to enable debug logs on elasticsearch for ssl using the log4j2.