Hello Team,
I have installed opendistro ES and kibana on linux machine(Server) using RPM.After successfull installation ES status coming as running but I am not able to access elasticsearch and kibana using Server ip address from my local windows machine as below.While hitting below url nothing is accessible.
[root@master-node ~]# curl -XGEThttps://localhost:9200
curl: (60) Peer’s Certificate issuer is not recognized.
So I have created self signed certificate and replaced defualt opendistro ssl certificate’s( esnode.pem,esnode-key.pem,kirk-key.pem,kirk.pem,root-ca.pem located in /etc/elasticsearch)
with these self signed certificate but after that Elasticsearch is failed to start.Tried to start elasticsearch with below command
[root@master-node sslcertforopendistro]# sudo systemctl start elasticsearch.service Job for elasticsearch.service failed because a timeout was exceeded. See “systemctl status elasticsearch.service” and “journalctl -xe” for details.
Please suggest how to access elasticsearch url with IPaddress from other different machine(windows)
I had created self signed .jks certificated using below commands.I had passed local ipaddress(192.168.1.3) from that machine where we need to access Elasticsearch url with ipaddress.
I am currently facing a similar issue in which when I am trying to connect to Kibana I am getting a connection refused and when I do a telnet to the kibana machine it has stopped listening on port 443 but when I am doing a systemctl status Kibana and systemctl status elastic it shows active.
I am not sure how to fix this issue and my Kibana interface is currently down.
I have double checked IPtables and ufw but both seems to be off and I see the following two errors which I am doing curl:
have you tried it with -k option as mentioned above?
You can also test the connection with openssl:
openssl s_client -connect securitycenter.salsalabs.net:443 -showcerts
Btw. in your link its http://securitycenter.salsalabs.net:443/ not https, so maybe your routing to https doesn’t work ?!?