Closed
Description
Kibana Build details:
VERSION: 9.0.0 beta1 BC1
BUILD: 83348
COMMIT: fd1f8b62137f14e93716e298e4e931b576e2ca13
Preconditions:
- 9.0.0-beta1 Self-managed environment should be available.
Steps to reproduce:
- Create certs using below command:
elasticsearch-certutil ca --pem
elasticsearch-certutil cert --name logstash --ca-cert C:\elk\elasticsearch\ca\ca.crt --ca-key C:\elk\elasticsearch\ca\ca.key --dns <public-dns> --ip <public-ip> --pem
elasticsearch-certutil cert --name client --ca-cert C:\elk\elasticsearch\ca\ca.crt --ca-key C:\elk\elasticsearch\ca\ca.key --dns <public-dns> --ip <public-ip> --pem
- Convert logstash key to
openssl pkcs8 -inform PEM -in logstash.key -topk8 -nocrypt -outform PEM -out logstash.pkcs8.key - Use elasticsearch/config/http_ca.crt as cacert and moved it to
C:\elk\logstash\config\. - Update elastic-agent-pipeline.conf to:
input {
elastic_agent {
port => 5044
ssl => true
ssl_certificate_authorities => ["C:\elk\elasticsearch\ca\ca.crt"]
ssl_certificate => "C:\elk\elasticsearch\logstash\logstash.crt"
ssl_key => "C:\elk\elasticsearch\logstash\logstash.pkcs8.key"
ssl_verify_mode => "force_peer"
}
}
output {
elasticsearch {
hosts => "<elasticsearchhost>"
api_key => "<api_key>"
data_stream => true
ssl => true
cacert => "C:\elk\logstash\config\http_ca.crt"
}
}
- Update pipelines.yml to:
- pipeline.id: elastic-agent-pipeline
path.config: "C:\elk\logstash\config\elastic-agent-pipeline.conf"
- Run logstash using:
logstash -f C:\elk\logstash\config\elastic-agent-pipeline.conf. - Observe logstash didn't start with and failed with errors.
Expected Result:
Logstash should run without any errors.
Screenshot:
