Hello fellow ODFE users,
I have successfully installed an ODFE instance with custom certificates for elasticsearch, beats, logstash and also admin and root certificates quite a while ago.
It is a single elasticsearch node with logstash and an extra server with only kibana installed.
Unfortunately I missed the expiration date of these certs and am now unable to configure the cluster via securityadmin.sh.
javax.net.ssl.SSLHandshakeException: PKIX path validation failed: java.security.cert.CertPathValidatorException: validity check failed
Caused by: java.security.cert.CertificateExpiredException: NotAfter: Thu Nov 05 18:00:39 CET 2020...
Is there any way to resolve this without losing data?
If not how can I “save” the installation and start fresh in a painless way?
- reset elasticsearch security index to initial security settings
- create new certificates
- apply still existing (e.g. internal_users.yml etc) with new certificates
- copy certificates to all nodes/beats etc
- restart everything
Any ideas are welcome