I am attempting to set the parameter plugins.security.ssl_cert_reload_enabled: true on a test cluster. I’ve added the parameter under the general section
However, when I shell into a running container, I do not see my change reflected in the /usr/share/opensearch/config/opensearch.yml file. Additionally I cannot perform the api call to hot reload certificates (which this parameter should have enabled).
Do parameters added to the additionalConfig sections of general and nodePools get added directly to the opensearch.yml file? If not, how do I see what the settings are for each node (calling _node/settings also did not show me my parameter)?
My question still stands howerver . . . When you set the additionConfig parameter, where is this change reflected if not in the opensearch.yml config file? How can I see my changes on my nodes?
judging from the response looks like your settings were updated successfully, have you tried checking opensearch.yml (cat /path/to/opensearch/config/opensearch.yml or grep "plugins.security.ssl_cert_reload_enabled" /path/to/opensearch/config/opensearch.yml)
Some of the settings you can check:
GET _cluster/settings
GET _nodes/[node_id]/settings
I was able to find the additionalConfig parameters. They do not get stored in /usr/share/opensearch/config/opnesearch.yml file. The parameters are set as environment variables (i.e. path.security.ssl_cert_reload_enabled=true) and passed to the opensearch binary through the entrypoint script ~/opensearch-docker-entrypoint.sh