Thanks, you was right.
So, just for anyone who will be doing the same:
I added our corporate dns (as root in docker container): echo "nameserver 10.10.10.21" >> /etc/resolv.conf
getent hosts smtp.rwlk.cz - to check that name resolves
Added our ca.crt and intermediate.crt to trusted store:keytool -import -noprompt -trustcacerts -alias ca -file ca.crt -keystore $JAVA_HOME/lib/security/cacerts -storepass changeit
Added username and password
/usr/share/opensearch/bin/opensearch-keystore add opensearch.notifications.core.email.monitoring.username
/usr/share/opensearch/bin/opensearch-keystore add opensearch.notifications.core.email.monitoring.password
Reload secure settings curl -X POST "https://localhost:9200/_nodes/reload_secure_settings" --insecure -u admin:admin
3 Likes