Re: ERROR in wazuh-indexer/step-by-step#cluster-initialization
401 views
Skip to first unread message
Message has been deleted
Santiago David Vendramini
Sep 1, 2022, 12:38:03 PM9/1/22
to Wazuh mailing list
Hi! Thanks for using Wazuh! Can you tell me more about your infrastructure? How do you plan to deploy wazuh-indexer, wazuh-server and wazuh-dashboard? It seems a problem with certificates. Did you follow the recomendations from the error message in <node-2> ?
El jueves, 1 de septiembre de 2022 a la(s) 08:22:40 UTC-3, 11218...@qq.com escribió:
hello, team,I'm following the tutorial <https://documentation.wazuh.com/current/installation-guide/wazuh-indexer/step-by-step.html#cluster-initialization> to install WAZUHThe previous steps were successfully run. when I chose a Wazuh indexer to run the <indexer-security-init.sh> script, I got some errors on it.```#cluster-initialization/usr/share/wazuh-indexer/bin/indexer-security-init.shNote:You only have to initialize the cluster once, there is no need to run this command on every node.```1. following errors Infinite loop when I run the script in <node-2>"Cannot retrieve cluster state due to: null. This is not an error, will keep on trying ...Root cause: MasterNotDiscoveredException[null] (org.opensearch.discovery.MasterNotDiscoveredException/org.opensearch.discovery.MasterNotDiscoveredException)
* Try running securityadmin.sh with -icl (but no -cl) and -nhnv (If that works you need to check your clustername as well as hostnames in your TLS certificates)
* Make sure that your keystore or PEM certificate is a client certificate (not a node certificate) and configured properly in opensearch.yml
* If this is not working, try running securityadmin.sh with --diagnose and see diagnose trace log file)* Add --accept-red-cluster to allow securityadmin to operate on a red cluster."2. following errors when I run the script in <node-1> OR <node-3>"18:51:11.197 [opensearch[_client_][transport_worker][T#1]] ERROR org.opensearch.security.ssl.transport.SecuritySSLNettyTransport - Exception during establishing a SSL connection: javax.net.ssl.SSLHandshakeException: PKIX path validation failed: java.security.cert.CertPathValidatorException: Path does not chain with any of the trust anchors"what can I do to finish the work of Cluster initialization?
Reply all
Reply to author
Forward
Message has been deleted
Message has been deleted
0 new messages