SSL and Wazuh Dashboard

[Root Etikit]

Hey Folks,

I've run into an issue while configuring SSL for the wazuh-dashboard.

Succeeded:

1. Generated CSR

2. Signed CSR with internal CA

3. Converted key and cer to pem

4. Moved the pem files to etc/wazuh-dashboard

5. Ownership is set

6. Configured opensearch-dashboards.yml with the new pem files

7.  Left the root-ca.pem as is, because someone in the group mentioned that's what they did and it worked.

Failed:

1. With root-ca.pem left in the configuration, the security warning persists (cert shows as installed.

2. Tried to load internal CA root cert and changed the config file to match (tried .pem and .crt) did not work. It shows as "cannot verify"

What do I need to do to get wazuh-dashboard to trust my cert?

Thanks!

[Damian Nicastro]

Hello Root

I hope you are fine.

Please, first explain if you want to use your internal Wazuh certificates for the browser or you intend to use a public SSL certificate.

If you signed the cert with an internal CA, it will not be recognized because the CA is not public. You will need to include the internal CA in the trusted certificates in your browser to make it work.

Let me know which web browser you use, and I can help you with the config. 

Please, also send your "/etc/wazuh-dashboard/opensearch_dashboards.yml" file to check the config.  

I hope this helps.

Thanks