Ssl certificate for web frontend


#1

how do I implement ssl certificate for web front-end.

I have a single server and a valid ca certificate.


(Jochen) #2

Please refer to http://docs.graylog.org/en/2.2/pages/configuration/https.html for setup instructions.


#4

I already tried mentioned steps.

Do I need to import ssl certificate to java store?

# The X.509 certificate chain file in PEM format to use for securing the web interface.
web_tls_cert_file = /path/to/graylog-certificate.pem

# The PKCS#8 private key file in PEM format to use for securing the web interface.
web_tls_key_file = /path/to/graylog-key.pem

# The password to unlock the private key used for securing the web interface.
web_tls_key_password = secret

Above doesn’t exist in my graylog configuration file.


(Jochen) #5

Which version of Graylog are you using?


#6

I am running with graylog appliance - 2.2.3+7adc951, codename Stiegl


(Jochen) #7

Please refer to the appropriate documentation: http://docs.graylog.org/en/2.2/pages/configuration/graylog_ctl.html#install-custom-ssl-certificates


#8

followed the steps as per article and ran command sudo graylog-ctl enforce-ssl however still no luck.

Running on http only… :frowning:


#9

Now finally I could make it work. As per document shared by jochen, have to copy ssl certificate to

/opt/graylog/conf/nginx/ca

Run graylog-ctl enforce-ssl and finally run graylog-ctl reconfigure

And… now it works on https… :slight_smile:


(system) #10

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.