Enable SSL in ELK

Enable SSL in ELK.

Please find the steps to enable SSL in ELK:

  1. Follow this link for Enabling SSL.
  2. Create certificate authority for Elasticsearch using bin/x-pack/certutil ca
  3. It will ask password, create a password
  4. Generate Certificate using bin/x-pack/certutil cert --ca elastic-stack-ca.p12 and create password again.
  5. I am using PKCS#12 format so added below lines in elasticsearch.yml:
    • xpack.security.http.ssl.enabled: true
    • xpack.security.http.ssl.keystore.path: certs/elastic-certificates.p12
    • xpack.security.http.ssl.truststore.path: certs/elastic-certificates.p12 
  6. Add password to Keystore using below commands for PKCS#12 format:
    • bin/elasticsearch-keystore add xpack.security.transport.ssl.keystore.secure_password
    • bin/elasticsearch-keystore add xpack.security.transport.ssl.truststore.secure_password 
  7. Restart Elasticsearch service. While browsing use https.
  8. Add the same URL with HTTPS in Kibana.yml and restart service.