Error : [2018-10-26T19:44:59,031][INFO ][t.b.r.c.s.SettingsPoller ] [CLUSTERWIDE SETTINGS] Cluster not ready…
[2018-10-26T19:44:59,090][WARN ][t.b.r.e.SSLTransportNetty4] io.netty.handler.ssl.NotSslRecordException: not an SSL/TLS record: 48454144202f20485454502f312e310d0a486f73743a203137322e32392e302e3134363a393230300d0a436f6e74656e742d4c656e6774683a20300d0a436f6e6e656374696f6e3a206b6565702d616c6976650d0a0d0a
elasticsearch.yml
http.type: ssl_netty4
readonlyrest.yml
readonlyrest:
enable: true
ssl:
enable: true
keystore_file: “/etc/elasticsearch/keystore.jks”
keystore_pass: ******************
key_pass: ***************
access_control_rules:
- name: Accept requests from users in group team
type: allow
ldap_auth:
name: "test"
groups: "admins"
indices: ["*"]
ldaps:
- name: test
host: "172.*.*.*"
port: 389
ssl_enabled: true
ssl_trust_all_certs: true
bind_dn: "cn=elkadmin,ou=elk,dc=*********,dc=local
bind_password: "*********"
search_user_base_DN: "ou=elk,dc=*****,dc=local
search_groups_base_DN: "ou=elk,dc=*******,dc=local"
when i run the curl command
curl -vvv -u elkadmin@.local:** “https://****************.local”
- Rebuilt URL to: https://********************.local/
- Trying 172...*…
- Connected to ************.local (172...) port 443 (#0)
- found 148 certificates in /etc/ssl/certs/ca-certificates.crt
- found 597 certificates in /etc/ssl/certs
- ALPN, offering http/1.1
- SSL connection using TLS1.2 / ECDHE_RSA_AES_256_GCM_SHA384
-
server certificate verification OK
-
server certificate status verification SKIPPED
-
common name: *************.local (matched)
-
server certificate expiration date OK
-
server certificate activation date OK
-
certificate public key: RSA
-
certificate version: #3
-
subject: CN=****************.local
-
start date: Fri, 26 Oct 2018 17:46:26 GMT
-
expire date: Mon, 23 Oct 2028 17:46:26 GMT
-
issuer: CN=*****************.local
-
compression: NULL
- ALPN, server accepted to use http/1.1
- Server auth using Basic with user ‘elkadmin@**********.local’
GET / HTTP/1.1
Host: **************.local
Authorization: Basic ZWxrYWRtaW5AYXBwZGV2LmxvY2FsOnNvYzIwMTgh
User-Agent: curl/7.47.0
Accept: /
< HTTP/1.1 401 Unauthorized
< Server: nginx/1.10.3 (Ubuntu)
< Date: Fri, 26 Oct 2018 20:04:24 GMT
< Content-Type: text/html
< Content-Length: 204
< Connection: keep-alive
- Authentication problem. Ignoring this.
< WWW-Authenticate: Basic realm=“Restricted Access”
<
401 Authorization Required
nginx/1.10.3 (Ubuntu) * Connection #0 to host *************.local left intact ************************************************************************************