TLS demo certificates
https://github.com/floragunncom/search-guard/blob/master/tools/install_demo_configuration.sh
Certificate generator https://floragunn.com/tls-certificate-generator/
TLS for Production environments
https://github.com/floragunncom/search-guard-docs/blob/master/tls_certificates_production.md
So maybe I try demo first and see if I can get it work..and then if successful .then I can backup the POC and use our own PKI to generate and use the link above for prod env POC
<Elasticsearch directory>/plugins/search-guard-5/tools
it is in another place and that breaks the script.
maybe I should remove bundle and install the unbundled one or modify the script!