本人在搭建elasticsearch、kibana、logstash各组件间的TLS/SSL加密问题时出现,Logstash认证不了CA证书,出现以下错误信息:
[2018-07-11T01:10:20,206]
[ERROR]
[logstash.pipeline ]
Error registering plugin {
:pipeline_id=>".monitoring-logstash",
:plugin=>"#<LogStash::OutputDelegator:0x3c2508a7>",
:error=>"Host name '192.168.10.106' does not match the certificate subject provided by the peer (CN=cacert)",
:thread=>"#<Thread:0x18591958 run>"}
请教各位大神要如何处理这个问题呢?
本人使用的elk版本有6.3,并且是在一台服务器上搭建测试环境。
我是通过elk自带的certutil命令创建CA证书的。其中elasticsearch、kibana能够正常启动并通讯,但 logstash用同一CA就无法启动。
通过下面命令 行创建CA证书:
certutil ca --out ca.zip --pem
通过下面命令行创建节点证书:
certutil cert --ca-cert ca.cert --ca-key ca.key --name cacert --out cacert.zip --pem
logstash.conf配置如下:(部分)
elasticsearch{
hosts => "192.168.10.106:9200"
index => "log-%{+YYYY.MM.dd}"
user => "elastic"
password => "${e_pwd}"
ssl => true
cacert => "/opt/new_elk/logstash-6.3.0/config/ca.crt"
}
logstash.yml配置如下:(部分)
xpack.monitoring.enabled: true
xpack.monitoring.elasticsearch.username: logstash_system
xpack.monitoring.elasticsearch.password: "${l_pwd}"
xpack.monitoring.elasticsearch.url: ["https://192.168.10.106:9200"]
xpack.monitoring.elasticsearch.ssl.ca: "/opt/new_elk/logstash-6.3.0/config/ca.crt"
xpack.monitoring.elasticsearch.ssl.verification_mode: certificate
[2018-07-11T01:10:20,206]
[ERROR]
[logstash.pipeline ]
Error registering plugin {
:pipeline_id=>".monitoring-logstash",
:plugin=>"#<LogStash::OutputDelegator:0x3c2508a7>",
:error=>"Host name '192.168.10.106' does not match the certificate subject provided by the peer (CN=cacert)",
:thread=>"#<Thread:0x18591958 run>"}
请教各位大神要如何处理这个问题呢?
本人使用的elk版本有6.3,并且是在一台服务器上搭建测试环境。
我是通过elk自带的certutil命令创建CA证书的。其中elasticsearch、kibana能够正常启动并通讯,但 logstash用同一CA就无法启动。
通过下面命令 行创建CA证书:
certutil ca --out ca.zip --pem
通过下面命令行创建节点证书:
certutil cert --ca-cert ca.cert --ca-key ca.key --name cacert --out cacert.zip --pem
logstash.conf配置如下:(部分)
elasticsearch{
hosts => "192.168.10.106:9200"
index => "log-%{+YYYY.MM.dd}"
user => "elastic"
password => "${e_pwd}"
ssl => true
cacert => "/opt/new_elk/logstash-6.3.0/config/ca.crt"
}
logstash.yml配置如下:(部分)
xpack.monitoring.enabled: true
xpack.monitoring.elasticsearch.username: logstash_system
xpack.monitoring.elasticsearch.password: "${l_pwd}"
xpack.monitoring.elasticsearch.url: ["https://192.168.10.106:9200"]
xpack.monitoring.elasticsearch.ssl.ca: "/opt/new_elk/logstash-6.3.0/config/ca.crt"
xpack.monitoring.elasticsearch.ssl.verification_mode: certificate
1 个回复
jiguang
赞同来自: