Hi, All
I followed the official Graylog installation guide and could access http://admin:IoixcXMvMs@0.0.0.0:9000 normally at first. After clicking "create CA" button, initializing the CA, I can no longer access the web page successfully. From the server.log, it's a certificate-related issue. Any help would be appreciated!
-
OS Information: ubuntu 24.04.3 LTS
-
Package Version:
-
Service logs, configurations, and environment variables:
2025-12-20T08:46:56.041Z INFO [PreflightJerseyService]
---
---
---
######## ### ######### ########## #### #### --- .---- ----
############### ###################### ##### #### --- ------------ .----------- --
##### ###### ##### #### #### #### --- --- --- --- -----
#### #### #### ############ #### #### --- -- --- --- ---
### ### #### ############## #### #### --- --- -- -- --
#### #### #### #### #### #### #### --- --- -- -- .--
##### ##### #### #### #### ####### --- --- --- --- ---
################ #### ############## ######- -- ---- ---- --- -----
############## #### ############# ##### ----- ----------- ---------- --
#### #### ---
##### #### #### - .--
############# #### ----- ----
###### #### -------
========================================================================================================
It seems you are starting Graylog for the first time. To set up a fresh install, a setup interface has
been started. You must log in to it to perform the initial configuration and continue.
Initial configuration is accessible at 0.0.0.0:9000, with username 'admin' and password 'IoixcXMvMs'.
Try clicking on http://admin:IoixcXMvMs@0.0.0.0:9000
========================================================================================================
2025-12-20T08:47:36.201Z INFO [CustomCAX509TrustManager] CA changed, refreshing trust manager
2025-12-20T08:47:43.159Z INFO [PreflightJerseyService] Shutting down HTTP listener at <0.0.0.0:9000>
2025-12-20T08:47:43.161Z INFO [Periodicals] Shutting down periodical [org.graylog2.bootstrap.preflight.GraylogCertificateProvisioningPeriodical].
2025-12-20T08:47:43.162Z INFO [Periodicals] Shutting down periodical [org.graylog2.events.ClusterEventPeriodical].
2025-12-20T08:47:43.162Z INFO [Periodicals] Shutting down periodical [org.graylog2.events.ClusterEventCleanupPeriodical].
2025-12-20T08:47:43.175Z INFO [NetworkListener] Stopped listener bound to [0.0.0.0:9000]
2025-12-20T08:47:43.408Z INFO [IndexerDiscoveryProvider] Datanode is not available. Retry #1
2025-12-20T08:47:48.440Z INFO [IndexerDiscoveryProvider] Datanode is not available. Retry #2
2025-12-20T08:47:48.502Z INFO [CaKeystore] Signing certificate for node de1f75af-63de-4bd0-a8ba-83777ea11cca, subject: CN=yzlogserver.mshome.net
2025-12-20T08:47:48.544Z ERROR [CertificateExchangeImpl] Failed to sign CSR for node, skipping it for now.
java.lang.RuntimeException: java.security.cert.CertificateParsingException: java.io.IOException: Parse Generalized time, invalid format
at org.graylog.security.certutil.CaKeystore.signCertificateRequest(CaKeystore.java:76)
at org.graylog2.bootstrap.preflight.GraylogCertificateProvisionerImpl.lambda$runProvisioning$0(GraylogCertificateProvisionerImpl.java:61)
at org.graylog2.cluster.certificates.CertificateExchangeImpl.signPendingCertificateRequests(CertificateExchangeImpl.java:102)
at org.graylog2.bootstrap.preflight.GraylogCertificateProvisionerImpl.runProvisioning(GraylogCertificateProvisionerImpl.java:61)
at org.graylog2.configuration.IndexerDiscoveryCertProvisioning.onDiscoveryRetry(IndexerDiscoveryCertProvisioning.java:39)
at java.base/java.lang.Iterable.forEach(Unknown Source)
at org.graylog2.configuration.IndexerDiscoveryProvider$1.onRetry(IndexerDiscoveryProvider.java:117)
at com.github.rholder.retry.Retryer.call(Retryer.java:167)
at org.graylog2.configuration.IndexerDiscoveryProvider.doGet(IndexerDiscoveryProvider.java:122)
at com.google.common.base.Suppliers$NonSerializableMemoizingSupplier.get(Suppliers.java:201)
at org.graylog2.configuration.IndexerDiscoveryProvider.get(IndexerDiscoveryProvider.java:86)
at org.graylog2.configuration.IndexerDiscoveryProvider.get(IndexerDiscoveryProvider.java:48)
at com.google.inject.internal.ProviderInternalFactory.provision(ProviderInternalFactory.java:86)
at com.google.inject.internal.BoundProviderFactory.provision(BoundProviderFactory.java:72)
at com.google.inject.internal.ProviderInternalFactory.circularGet(ProviderInternalFactory.java:60)
at com.google.inject.internal.BoundProviderFactory.get(BoundProviderFactory.java:59)
at com.google.inject.internal.ProviderToInternalFactoryAdapter.get(ProviderToInternalFactoryAdapter.java:40)
at com.google.inject.internal.SingletonScope$1.get(SingletonScope.java:169)
at com.google.inject.internal.InternalFactoryToProviderAdapter.get(InternalFactoryToProviderAdapter.java:45)
at com.google.inject.internal.InternalInjectorCreator.loadEagerSingletons(InternalInjectorCreator.java:213)
at com.google.inject.internal.InternalInjectorCreator.injectDynamically(InternalInjectorCreator.java:186)
at com.google.inject.internal.InternalInjectorCreator.build(InternalInjectorCreator.java:113)
at com.google.inject.Guice.createInjector(Guice.java:87)
at com.google.inject.Guice.createInjector(Guice.java:69)
at com.google.inject.Guice.createInjector(Guice.java:59)
at org.graylog2.bootstrap.ServerBootstrap.getPreflightInjector(ServerBootstrap.java:289)
at org.graylog2.bootstrap.ServerBootstrap.runPreFlightChecks(ServerBootstrap.java:181)
at org.graylog2.bootstrap.ServerBootstrap.beforeInjectorCreation(ServerBootstrap.java:151)
at org.graylog2.bootstrap.CmdLineTool.doRun(CmdLineTool.java:362)
at org.graylog2.bootstrap.CmdLineTool.run(CmdLineTool.java:287)
at org.graylog2.bootstrap.Main.main(Main.java:57)
Caused by: java.security.cert.CertificateParsingException: java.io.IOException: Parse Generalized time, invalid format
at java.base/sun.security.x509.X509CertInfo.<init>(Unknown Source)
at java.base/sun.security.x509.X509CertImpl.parse(Unknown Source)
at java.base/sun.security.x509.X509CertImpl.<init>(Unknown Source)
at java.base/sun.security.provider.X509Factory.cachedGetX509Cert(Unknown Source)
at java.base/sun.security.provider.X509Factory.engineGenerateCertificate(Unknown Source)
at java.base/java.security.cert.CertificateFactory.generateCertificate(Unknown Source)
at org.bouncycastle.cert.jcajce.JcaX509CertificateConverter.getCertificate(Unknown Source)
at org.graylog.security.certutil.csr.CsrSigner.sign(CsrSigner.java:133)
at org.graylog.security.certutil.csr.CsrSigner.sign(CsrSigner.java:93)
at org.graylog.security.certutil.CaKeystore.signCertificateRequest(CaKeystore.java:72)
... 30 more
Caused by: java.io.IOException: Parse Generalized time, invalid format
at java.base/sun.security.util.DerValue.getTimeInternal(Unknown Source)
at java.base/sun.security.util.DerValue.getGeneralizedTime(Unknown Source)
at java.base/sun.security.util.DerInputStream.getGeneralizedTime(Unknown Source)
at java.base/sun.security.x509.CertificateValidity.<init>(Unknown Source)
at java.base/sun.security.x509.X509CertInfo.parse(Unknown Source)
... 40 more
2025-12-20T08:47:53.551Z INFO [IndexerDiscoveryProvider] Datanode is not available. Retry #3
2025-12-20T08:47:53.603Z INFO [CaKeystore] Signing certificate for node de1f75af-63de-4bd0-a8ba-83777ea11cca, subject: CN=yzlogserver.mshome.net
2025-12-20T08:47:53.639Z ERROR [CertificateExchangeImpl] Failed to sign CSR for node, skipping it for now.
java.lang.RuntimeException: java.security.cert.CertificateParsingException: java.io.IOException: Parse Generalized time, invalid format
at org.graylog.security.certutil.CaKeystore.signCertificateRequest(CaKeystore.java:76)
at org.graylog2.bootstrap.preflight.GraylogCertificateProvisionerImpl.lambda$runProvisioning$0(GraylogCertificateProvisionerImpl.java:61)
at org.graylog2.cluster.certificates.CertificateExchangeImpl.signPendingCertificateRequests(CertificateExchangeImpl.java:102)
at org.graylog2.bootstrap.preflight.GraylogCertificateProvisionerImpl.runProvisioning(GraylogCertificateProvisionerImpl.java:61)
at org.graylog2.configuration.IndexerDiscoveryCertProvisioning.onDiscoveryRetry(IndexerDiscoveryCertProvisioning.java:39)
at java.base/java.lang.Iterable.forEach(Unknown Source)
at org.graylog2.configuration.IndexerDiscoveryProvider$1.onRetry(IndexerDiscoveryProvider.java:117)
at com.github.rholder.retry.Retryer.call(Retryer.java:167)
at org.graylog2.configuration.IndexerDiscoveryProvider.doGet(IndexerDiscoveryProvider.java:122)
at com.google.common.base.Suppliers$NonSerializableMemoizingSupplier.get(Suppliers.java:201)
at org.graylog2.configuration.IndexerDiscoveryProvider.get(IndexerDiscoveryProvider.java:86)
at org.graylog2.configuration.IndexerDiscoveryProvider.get(IndexerDiscoveryProvider.java:48)
at com.google.inject.internal.ProviderInternalFactory.provision(ProviderInternalFactory.java:86)
at com.google.inject.internal.BoundProviderFactory.provision(BoundProviderFactory.java:72)
at com.google.inject.internal.ProviderInternalFactory.circularGet(ProviderInternalFactory.java:60)
at com.google.inject.internal.BoundProviderFactory.get(BoundProviderFactory.java:59)
at com.google.inject.internal.ProviderToInternalFactoryAdapter.get(ProviderToInternalFactoryAdapter.java:40)
at com.google.inject.internal.SingletonScope$1.get(SingletonScope.java:169)
at com.google.inject.internal.InternalFactoryToProviderAdapter.get(InternalFactoryToProviderAdapter.java:45)
at com.google.inject.internal.InternalInjectorCreator.loadEagerSingletons(InternalInjectorCreator.java:213)
at com.google.inject.internal.InternalInjectorCreator.injectDynamically(InternalInjectorCreator.java:186)
at com.google.inject.internal.InternalInjectorCreator.build(InternalInjectorCreator.java:113)
at com.google.inject.Guice.createInjector(Guice.java:87)
at com.google.inject.Guice.createInjector(Guice.java:69)
at com.google.inject.Guice.createInjector(Guice.java:59)
at org.graylog2.bootstrap.ServerBootstrap.getPreflightInjector(ServerBootstrap.java:289)
at org.graylog2.bootstrap.ServerBootstrap.runPreFlightChecks(ServerBootstrap.java:181)
at org.graylog2.bootstrap.ServerBootstrap.beforeInjectorCreation(ServerBootstrap.java:151)
at org.graylog2.bootstrap.CmdLineTool.doRun(CmdLineTool.java:362)
at org.graylog2.bootstrap.CmdLineTool.run(CmdLineTool.java:287)
at org.graylog2.bootstrap.Main.main(Main.java:57)
Caused by: java.security.cert.CertificateParsingException: java.io.IOException: Parse Generalized time, invalid format
at java.base/sun.security.x509.X509CertInfo.<init>(Unknown Source)
at java.base/sun.security.x509.X509CertImpl.parse(Unknown Source)
at java.base/sun.security.x509.X509CertImpl.<init>(Unknown Source)
at java.base/sun.security.provider.X509Factory.cachedGetX509Cert(Unknown Source)
at java.base/sun.security.provider.X509Factory.engineGenerateCertificate(Unknown Source)
at java.base/java.security.cert.CertificateFactory.generateCertificate(Unknown Source)
at org.bouncycastle.cert.jcajce.JcaX509CertificateConverter.getCertificate(Unknown Source)
at org.graylog.security.certutil.csr.CsrSigner.sign(CsrSigner.java:133)
at org.graylog.security.certutil.csr.CsrSigner.sign(CsrSigner.java:93)
at org.graylog.security.certutil.CaKeystore.signCertificateRequest(CaKeystore.java:72)
... 30 more