-
Notifications
You must be signed in to change notification settings - Fork 24.9k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Instructions to retrieve keystore pwd #84340
Instructions to retrieve keystore pwd #84340
Conversation
In 8.0.0. we introduce TLS autoconfiguration. We store the key and certificate materials in password protected PKCS#12 keystores and we store these passwords in the elasticsearch keystore. This commit adds instructions on how to get hold of the passwords for users to inspect or alter the PKCS#12 keystores.
Pinging @elastic/es-security (Team:Security) |
Pinging @elastic/es-docs (Team:Docs) |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
LGTM. I left a suggestion that you can ignore if wanted. Thanks!
Use the following command to retrieve the password for `transport.p12`: | ||
[source,sh] | ||
------------------------- | ||
bin/elasticsearch-keystore show xpack.security.transport.ssl.keystore.secure_password | ||
------------------------- | ||
|
||
Use the following command to retrieve the password for `http.p12`: | ||
[source,sh] | ||
------------------------- | ||
bin/elasticsearch-keystore show xpack.security.http.ssl.keystore.secure_password | ||
------------------------- |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Should we flip the order of these snippets so they match the order above?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
On mobile but I’ll make the change later, makes sense!
Co-authored-by: James Rodewig <[email protected]>
In 8.0.0. we introduce TLS autoconfiguration. We store the key and certificate materials in password protected PKCS#12 keystores and we store these passwords in the elasticsearch keystore. This commit adds instructions on how to get hold of the passwords for users to inspect or alter the PKCS#12 keystores. (cherry picked from commit 8cebba5)
In 8.0.0. we introduce TLS autoconfiguration. We store the key and certificate materials in password protected PKCS#12 keystores and we store these passwords in the elasticsearch keystore. This commit adds instructions on how to get hold of the passwords for users to inspect or alter the PKCS#12 keystores. (cherry picked from commit 8cebba5)
💚 All backports created successfully
Questions ?Please refer to the Backport tool documentation |
In elastic#84340 we adjusted the docs to show instructions on how to retrieve TLS keystores passwords from the elasticsearch keystore but the security-files-reference.asciidoc was not referenced in all places where the instructions should be used. This commit changes that and also removes references for beta versions.
In #84340 we adjusted the docs to show instructions on how to retrieve TLS keystores passwords from the elasticsearch keystore but the security-files-reference.asciidoc was not referenced in all places where the instructions should be used. This commit changes that and also removes references for beta versions.
In 8.0.0. we introduce TLS autoconfiguration. We store the key and certificate materials in password protected PKCS#12 keystores and we store these passwords in the elasticsearch keystore. This commit adds instructions on how to get hold of the passwords for users to inspect or alter the PKCS#12 keystores. (cherry picked from commit 8cebba5)
In 8.0.0. we introduce TLS autoconfiguration. We store the key and certificate materials in password protected PKCS#12 keystores and we store these passwords in the elasticsearch keystore. This commit adds instructions on how to get hold of the passwords for users to inspect or alter the PKCS#12 keystores. (cherry picked from commit 8cebba5)
In elastic#84340 we adjusted the docs to show instructions on how to retrieve TLS keystores passwords from the elasticsearch keystore but the security-files-reference.asciidoc was not referenced in all places where the instructions should be used. This commit changes that and also removes references for beta versions. (cherry picked from commit 7c33a77)
In elastic#84340 we adjusted the docs to show instructions on how to retrieve TLS keystores passwords from the elasticsearch keystore but the security-files-reference.asciidoc was not referenced in all places where the instructions should be used. This commit changes that and also removes references for beta versions. (cherry picked from commit 7c33a77)
In #84340 we adjusted the docs to show instructions on how to retrieve TLS keystores passwords from the elasticsearch keystore but the security-files-reference.asciidoc was not referenced in all places where the instructions should be used. This commit changes that and also removes references for beta versions. (cherry picked from commit 7c33a77)
In #84340 we adjusted the docs to show instructions on how to retrieve TLS keystores passwords from the elasticsearch keystore but the security-files-reference.asciidoc was not referenced in all places where the instructions should be used. This commit changes that and also removes references for beta versions. (cherry picked from commit 7c33a77)
In 8.0.0. we introduce TLS autoconfiguration. We store the key and
certificate materials in password protected PKCS#12 keystores and
we store these passwords in the elasticsearch keystore.
This commit adds instructions on how to get hold of the passwords
for users to inspect or alter the PKCS#12 keystores.