Currently I am running 3 instances with the graylog ami (graylog-2.4.6-1).
2 for elastic seatch and 1 for web/mongo.
When doing a fresh install, I have no issues getting everything up and running, but whenever I attempt to add SSL, it all blows up.
Steps taken on webserver:
- Copy SSL cert/keys into
opt/graylog/conf/nginx/ca/graylog.crt
and/opt/graylog/conf/nginx/ca/graylog.key
- graylog-ctl set-admin-password
- graylog-ctl enforce-ssl
- graylog-ctl set-external-ip https://<domain_name>:9000/api/ (note: I’ve already with public IP as well. With or without SSL as well)
- graylog-ctl reconfigure-as-server
(Pretty much following the directions from http://docs.graylog.org/en/2.4/pages/configuration/graylog_ctl.html#install-custom-ssl-certificates )
Once restarted it comes up and starts to load and provides the following error:
We are experiencing problems connecting to the Graylog server running on https://<domain_name>:9000/api/ . Please verify that the server is healthy and working correctly.
I’m kind of at a loss and have searched on this issue without finding a resolution.