I have successfully set up ELK stack with search guard, however when I try to use curator to manage indices I am unable to get it to connect.
I’m using Elasticsearch version 6.2.1 and SG version 6
My curator config is as follows:
Remember, leave a key empty if there is no value. None will be a string,
not a Python “NoneType”
certificate: ‘C:\elastic\elasticsearch-6.2.1\config\cert\Star Financial Systems UAT ELK Certificate Authority.pem’
However when running curator, I encounter the following error:
urllib3.exceptions.NewConnectionError: <urllib3.connection.VerifiedHTTPSConnection object at 0x00000080C3863C88>: Failed to establish a new connection: [WinError 10061] No connection could be made because the target machine actively refused it
If I change the URL to the internal IP of the Elasticsearch instance, 192.168.2.10, I receive this error instead:
urllib3.exceptions.SSLError: [SSL: UNKNOWN_PROTOCOL] unknown protocol (_ssl.c:833)
Would somebody be able to point me in the direction of what I’m doing wrong? I’ve heard that maybe I have to configure roles for curator but I’m unsure what permissions they should have. Alternatively, if someone knows of a guide to setting up curator to work with SearchGuard it would be greatly appreciated.