I am trying to configure an alert with the slack integration, and I keep seeing TLS java errors when it tries to connect. I have a test cluster, and I re-did all my certificates to be the same CA as the chat server. I can run openssl s_client with the ca file and it validates the chat servers certificate, but I still get the following error when trying to get OpenDistro to send the alert. Anyone able to give me some pointers here? Does this pull from the transport/rest CA’s or is there yet another configuration option to provide this CA to the alerting? I am somewhat stuck here…
What I get when trying to send the alert:
Error: Failed running action: javax.net.ssl.SSLHandshakeException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
I am running the chat server internally so there is not a public certificate, however the CA used to create the certificate is the one I have added to OpenDistro for both transport and Rest settings. I would even accept turning this check off, as this is an internal server, but I don’t think that is an option somewhere either.