Still unable to connect to ldap due to empty truststore filepath

chan.chunlok · July 9, 2019, 11:57pm

Hi To the experts,

Need some guidance on how to setup the proper authentication and authorization with window LDAP server 2019.

Been trying for quite some time.

Few questions to clarify!

Does the sgadmin configuration need to reload with ldap cert
Any additional configuration with regards to elasticsearch yml, sg_config and role mapping.
Any conflict with the current default basic SG authentication?

Hope anyone can enlighten me about this.

Thank you very much.

The sgadmin configuration is below:

./sgadmin.sh -icl -nhnv -h xxx.xxx.xxx.xxx -cd …/sgconfig -keypass xxxxx
-cert ./AdminNode.pem -key ./AdminNode.key -cacert ./root-ca.pem

elasticsearch.yml (1.1 KB) sg_config.yml (7.2 KB) sg_roles_mapping.yml (73 Bytes)

cstaley · July 10, 2019, 6:14am

Please post your complete sg_config.yml and elasticsearch.yml (without sensitive data/passwords).
Please also share any logs related to “missing truststore file path” (with full stacktraces if applicable).

Looking into the provided config it seems that you need to set enable_ssl: true in both the authc and authz section of your LDAP configuration. Please also refer to LDAP Connection | Security for Elasticsearch | Search Guard .

system · July 31, 2019, 6:36am

This topic was automatically closed 21 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
sgadmin fails please solve this issue Search Guard	2	382	November 1, 2017
[search-guard group] Config Search Guard SSL error Search Guard	0	320	March 14, 2017
SearchGuard Active Directory Not able to sync user Search Guard	15	450	July 13, 2017
How to user sgadm? (ERR: Parsing failed. Reason: Specify at least -ks or -cert) Search Guard	7	556	October 3, 2020
[search-guard group] sgadmin fails on IndexNotFoundException Search Guard	0	390	November 29, 2016

Still unable to connect to ldap due to empty truststore filepath

Related Topics