Hello,
I have successfully set up ELK stack with search guard, however when I try to use curator to manage indices I am unable to get it to connect.
I’m using Elasticsearch version 6.2.1 and SG version 6
My curator config is as follows:
···
Remember, leave a key empty if there is no value. None will be a string,
not a Python “NoneType”
client:
hosts:
- 127.0.0.1
port: 9200
url_prefix:
use_ssl: True
certificate: ‘C:\elastic\elasticsearch-6.2.1\config\cert\Star Financial Systems UAT ELK Certificate Authority.pem’
client_cert: ‘C:\elastic\elasticsearch-6.2.1\config\cert\admin.sfs-uat.com.pem’
client_key: ‘C:\elastic\elasticsearch-6.2.1\config\cert\key-admin.sfs-uat.com.pem’
ssl_no_validate: True
http_auth:
timeout: 30
master_only: False
logging:
loglevel: INFO
logfile: “F:/ElkStackLogs/curator.log”
logformat: default
blacklist:
``
However when running curator, I encounter the following error:
urllib3.exceptions.NewConnectionError: <urllib3.connection.VerifiedHTTPSConnection object at 0x00000080C3863C88>: Failed to establish a new connection: [WinError 10061] No connection could be made because the target machine actively refused it
``
If I change the URL to the internal IP of the Elasticsearch instance, 192.168.2.10, I receive this error instead:
urllib3.exceptions.SSLError: [SSL: UNKNOWN_PROTOCOL] unknown protocol (_ssl.c:833)
``
Would somebody be able to point me in the direction of what I’m doing wrong? I’ve heard that maybe I have to configure roles for curator but I’m unsure what permissions they should have. Alternatively, if someone knows of a guide to setting up curator to work with SearchGuard it would be greatly appreciated.
Many Thanks,
James