Kibana.yml config

Search Guard
1

I am confused by this section of the docs regarding Kibana integration.

kibana-plugin-installation

Setting up SSL/TLS

Configuring the Root CA

In there is says I should define:

elasticsearch.ssl.verificationMode

elasticsearch.ssl.certificateAuthorities

However when I try to start kibana I get the following fatal error:

child \"ssl\" fails because [\"http\" is not allowed]

After some googling I found this post which has a similar error and suggests those commands are not valid in kibana.yml and sure enough removing the lines does allow Kibana to start, though only be reachable on localhost and not via it’s IP over https.

Looking through the Kibana trouble shooting section confirms that those lines should appear in kibana.yml.

Is there another explanation for that error?

Thanks.

SG, ES & Kibana version 6.4.0

Ubuntu 16.04

2

I worked it out eventually. I miss-read the kibana troubleshooting section that says “check” that the line above is in elasticsearch.yml and put it in kibana.yml.

It’s an easy mistake to make and this error could be added to the kibana trouble shooting page.

3

Thanks for the hint, this is in fact misleading and we will correct it!

···

On Tuesday, October 9, 2018 at 4:01:49 PM UTC+2, Martin wrote:

I worked it out eventually. I miss-read the kibana troubleshooting section that says “check” that the line above is in elasticsearch.yml and put it in kibana.yml.

It’s an easy mistake to make and this error could be added to the kibana trouble shooting page.