I’m trying to configure filebeat with graylog with a ssl wildcard certificate to encrypt log streams to graylog server, but it fails.
The ssl certificate for https is working fine.
The ssl certificate private key was in pkcs#1, I converted it in pkcs#8.
Filebeat logs tells x509: “cannot validate certificate for xx.xx.xx.xx because it doesn’t contain any IP SANs”
Graylog server log :
Caused by: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target.
I saw somewhere that the certificate must contain the ip address, otherwise it won’t work. and saw an option " `insecure_skip_verify" for tls. Can it be configured in graylog ? Have you an idea ?
How to set the ssl certificate both side (filebeat/graylog server) for streams to be encrypted with the ssl wildcard certificate ?
Thank you for your help