I have installed Elasticsearch and
Search Guard 6.3.0 (community edition) in my laptop that runs Ubuntu 14.04. For
the Search Guard configuration I executed the demo installation script. I want to
push some data to elasticsearch from a spring boot application and I am facing some
certificate problems.
Is there a way to create the JKS certificates
(kirk.jks and truststore.jks) from the demo certificates provided with the demo
installation script?
Usually, PEM certificates are the preferred way to configure Search Guard since JKS is a proprietary format. What kinds of problems do you have that forces you to use JKS over PEM?
You can use the keytool that ships with the JDK to import PEM to JKS. For an example you might want to refer to the sample PKI scripts that ship with Search Guard SSL:
We can also recommend the Keystore Explorer that comes with a GUI if you prefer that:
···
On Tuesday, June 26, 2018 at 2:13:13 PM UTC+2, Vasileios Kokkinos wrote:
I have installed Elasticsearch and
Search Guard 6.3.0 (community edition) in my laptop that runs Ubuntu 14.04. For
the Search Guard configuration I executed the demo installation script. I want to
push some data to elasticsearch from a spring boot application and I am facing some
certificate problems.
Is there a way to create the JKS certificates
(kirk.jks and truststore.jks) from the demo certificates provided with the demo
installation script?
Actually, I want to push some data to elasticsearch from
a spring boot application, using the TransportClient. After looking at https://search-guard.com/searchguard-elasicsearch-transport-clients/,
I saw that I have to include the “absolute/path/to/keystore” and the “absolute/path/to/truststore”,
i.e. the jks files are necessary.
In any case, I will take a look at the .sh file and the Keystore
Explorer that you mention and hopefully I will create a valid jks file
from the demo certificates.
Usually, PEM certificates are the preferred way to configure Search Guard since JKS is a proprietary format. What kinds of problems do you have that forces you to use JKS over PEM?
You can use the keytool that ships with the JDK to import PEM to JKS. For an example you might want to refer to the sample PKI scripts that ship with Search Guard SSL:
On Tuesday, June 26, 2018 at 2:13:13 PM UTC+2, Vasileios Kokkinos wrote:
I have installed Elasticsearch and
Search Guard 6.3.0 (community edition) in my laptop that runs Ubuntu 14.04. For
the Search Guard configuration I executed the demo installation script. I want to
push some data to elasticsearch from a spring boot application and I am facing some
certificate problems.
Is there a way to create the JKS certificates
(kirk.jks and truststore.jks) from the demo certificates provided with the demo
installation script?
Thanks in advance,
Vasileios
–
You received this message because you are subscribed to the Google Groups “Search Guard Community Forum” group.
Oh, I see. The blog post is a bit old, it was written for SG2 and SG5 when JKS was the preferred way of configuration. But you can also use PEM certificates for the Transport Client. Instead of using these constants here for JKS:
On Thursday, June 28, 2018 at 11:14:56 AM UTC+2, Vasileios Kokkinos wrote:
Jochen thank you
for your reply,
Actually, I want to push some data to elasticsearch from
a spring boot application, using the TransportClient. After looking at https://search-guard.com/searchguard-elasicsearch-transport-clients/,
I saw that I have to include the “absolute/path/to/keystore” and the “absolute/path/to/truststore”,
i.e. the jks files are necessary.
In any case, I will take a look at the .sh file and the Keystore
Explorer that you mention and hopefully I will create a valid jks file
from the demo certificates.
Usually, PEM certificates are the preferred way to configure Search Guard since JKS is a proprietary format. What kinds of problems do you have that forces you to use JKS over PEM?
You can use the keytool that ships with the JDK to import PEM to JKS. For an example you might want to refer to the sample PKI scripts that ship with Search Guard SSL:
On Tuesday, June 26, 2018 at 2:13:13 PM UTC+2, Vasileios Kokkinos wrote:
I have installed Elasticsearch and
Search Guard 6.3.0 (community edition) in my laptop that runs Ubuntu 14.04. For
the Search Guard configuration I executed the demo installation script. I want to
push some data to elasticsearch from a spring boot application and I am facing some
certificate problems.
Is there a way to create the JKS certificates
(kirk.jks and truststore.jks) from the demo certificates provided with the demo
installation script?
Thanks in advance,
Vasileios
–
You received this message because you are subscribed to the Google Groups “Search Guard Community Forum” group.
Oh, I see. The blog post is a bit old, it was written for SG2 and SG5 when JKS was the preferred way of configuration. But you can also use PEM certificates for the Transport Client. Instead of using these constants here for JKS:
On Thursday, June 28, 2018 at 11:14:56 AM UTC+2, Vasileios Kokkinos wrote:
Jochen thank you
for your reply,
Actually, I want to push some data to elasticsearch from
a spring boot application, using the TransportClient. After looking at https://search-guard.com/searchguard-elasicsearch-transport-clients/,
I saw that I have to include the “absolute/path/to/keystore” and the “absolute/path/to/truststore”,
i.e. the jks files are necessary.
In any case, I will take a look at the .sh file and the Keystore
Explorer that you mention and hopefully I will create a valid jks file
from the demo certificates.
Usually, PEM certificates are the preferred way to configure Search Guard since JKS is a proprietary format. What kinds of problems do you have that forces you to use JKS over PEM?
You can use the keytool that ships with the JDK to import PEM to JKS. For an example you might want to refer to the sample PKI scripts that ship with Search Guard SSL:
On Tuesday, June 26, 2018 at 2:13:13 PM UTC+2, Vasileios Kokkinos wrote:
I have installed Elasticsearch and
Search Guard 6.3.0 (community edition) in my laptop that runs Ubuntu 14.04. For
the Search Guard configuration I executed the demo installation script. I want to
push some data to elasticsearch from a spring boot application and I am facing some
certificate problems.
Is there a way to create the JKS certificates
(kirk.jks and truststore.jks) from the demo certificates provided with the demo
installation script?
Thanks in advance,
Vasileios
–
You received this message because you are subscribed to the Google Groups “Search Guard Community Forum” group.