Hello,
I am trying to implement SSL in my current graylog setup which is running on container based. We have docker compose file to create this whole setup. I got this document (The Web Interface) but not able to understand where I need to start and what settings to be done in the container.
My goal is to access graylog web interface like https://graylog-env.mydomain.com
Please help me on this with detailed steps 
Hello @I_am_winner,
Have a read through this guide and come back with questions, should you have any.
@Wine_Merchant
Hello,
I have gone through still I am not sure on the below points
Hey @I_am_winner,
You will need to use environment variables instead of editing the server.conf file directly.
GRAYLOG_HTTP_TLS_CERT_FILE: /usr/share/graylog/data/config/cert.pem
GRAYLOG_HTTP_TLS_KEY_FILE: /usr/share/graylog/data/config/privkey.pem
GRAYLOG_SERVER_JAVA_OPTS:"Djavax.net.ssl.trustStore=/usr/share/graylog/data/config/cacerts -Djavax.net.ssl.trustStorePassword=changeit"
You can persist the paths to those certs and key store by using volumes.
volumes:
- "graylog_data:/usr/share/graylog/data/data"
- "graylog_journal:/usr/share/graylog/data/journal"
- "graylog_config:/usr/share/graylog/data/config"
The keystore is required for the Graylog nodes to make api calls to each other and themselves. The CA or node cert should be added to the keystore.
This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.