TLS Input Error

Good morning all, I hope all is well.

I was able to successfully add SSL to the web interface with the following config:

http_tls_cert_file = /etc/graylog/cert.pem
http_tls_key_file = /etc/graylog/pkcs8-encrypted.pem
http_tls_key_password = secret

Now I am trying to use those certs for an Input with TLS:

I supply my source with the above cert.pem and get the following in the log:
File does not contain valid private key: /etc/graylog/pkcs8-encrypted.pem

If connect to the web interface from CLI with:
openssl s_client -showcerts -connect host:9000
I see all my cert information

But on the Input with TLS
openssl s_client -showcerts -connect host:5142
I don’t see any cert information

I thought once I got the web interface squared away, adding TLS to an Input would be easy :slight_smile:

Thank you, Zach.

When you made certs for HTTPS do you still have your key cert.
I read somewhere someone restart the graylog service and the INPUT started to work.

I used these two from the docs for my INPUTS TCP/TLS

Interesting, I’ll check and see and give it a go if I do. Thank you, Zach.

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.