General security questions about Open Distro

I’ve got a few questions about the Open Distro and the features that it provides.

  1. I read the article about configuring your own SSL certs with the Open Distro, does this mean that OD allows for certificate revocation (by CRL, or OCSP)

  2. Does OD allow for Cluster Replication, if so how exactly does it work.

  3. Does Open Distro support mutual TLS (mTLS) between elastic components within a cluster.

I haven’t been able to find answers online so I thought I’d post here. Any help is much appreciated.



I am looking forward to use OpenDistro/OpenSearch with personal certificates.
I’ve searched the OpenDistro and OpenSearch sites and have no luck finding any Certificate Revocation option.

Did you have a chance to figure out if this is possible?