Greetings,
I trust this message finds you in good spirits. I am reaching out to address an issue I am currently encountering. Specifically, I am receiving the following error: “Unable to retrieve version from Elasticsearch node: Unsupported or unrecognized SSL message. - Unsupported or unrecognized SSL message.”
My setup consists of a single node comprising the following components:
graylog-server: Version 5.1.11-1
mongodb-org-server: Version 7.0.5
wazuh-indexer: Version 4.7.2-1
tail -f /var/log/graylog-server/server.log
ERROR [VersionProbe] Unable to retrieve version from Elasticsearch node: Unsupported or unrecognized SSL message. - Unsupported or unrecognized SSL message.
cat /etc/graylog/server/server.conf | egrep -v "^\s*(#|$)"
elasticsearch_version = 7
is_leader = true
node_id_file = /etc/graylog/server/node-id
password_secret = SC70Qz4EXWbDgZ35Tv5FRfaGsCNDmPAp1vhpwyg53CEp5FLIu7EACTWys38qyiXKHMyAVQHOqpqYF3b6pzknRd8031iIafYC
root_password_sha2 = c7ff6dcd94d7161eff5da0585684a8d16fb00090c0f38336d31950819e2f2003
bin_dir = /usr/share/graylog-server/bin
data_dir = /var/lib/graylog-server
plugin_dir = /usr/share/graylog-server/plugin
stream_aware_field_types=false
elasticsearch_hosts = https://graylog:stage@10.10.20.100:9200
allow_leading_wildcard_searches = false
allow_highlighting = false
output_batch_size = 500
output_flush_interval = 1
output_fault_count_threshold = 5
output_fault_penalty_seconds = 30
processbuffer_processors = 5
outputbuffer_processors = 3
processor_wait_strategy = blocking
ring_size = 65536
inputbuffer_ring_size = 65536
inputbuffer_processors = 2
inputbuffer_wait_strategy = blocking
message_journal_enabled = true
message_journal_dir = /var/lib/graylog-server/journal
lb_recognition_period_seconds = 3
mongodb_uri = mongodb://localhost/graylog
mongodb_max_connections = 1000
cat /etc/wazuh-indexer/opensearch.yml | egrep -v "^\s*(#|$)"
network.host: "10.10.20.100"
node.name: "LAB-IND.cyberlab.local"
cluster.initial_master_nodes:
- "LAB-IND.cyberlab.local"
cluster.name: "lab-wazuh-cluster"
discovery.seed_hosts:
- "LAB-IND.cyberlab.local"
node.max_local_storage_nodes: "1"
path.data: /var/lib/wazuh-indexer
path.logs: /var/log/wazuh-indexer
bootstrap.memory_lock: true
plugins.security.ssl.http.pemcert_filepath: /etc/wazuh-indexer/certs/LAB-IND.cyberlab.local.pem
plugins.security.ssl.http.pemkey_filepath: /etc/wazuh-indexer/certs/LAB-IND.cyberlab.local-key.pem
plugins.security.ssl.http.pemtrustedcas_filepath: /etc/wazuh-indexer/certs/root-ca.pem
plugins.security.ssl.transport.pemcert_filepath: /etc/wazuh-indexer/certs/LAB-IND.cyberlab.local.pem
plugins.security.ssl.transport.pemkey_filepath: /etc/wazuh-indexer/certs/LAB-IND.cyberlab.local-key.pem
plugins.security.ssl.transport.pemtrustedcas_filepath: /etc/wazuh-indexer/certs/root-ca.pem
plugins.security.ssl.http.enabled: false
plugins.security.ssl.transport.enforce_hostname_verification: false
plugins.security.ssl.transport.resolve_hostname: false
plugins.security.authcz.admin_dn:
- "CN=admin,OU=Wazuh,O=Wazuh,L=California,C=US"
plugins.security.check_snapshot_restore_write_privileges: true
plugins.security.enable_snapshot_restore_privilege: true
plugins.security.nodes_dn:
- "CN=node-1,OU=Wazuh,O=Wazuh,L=California,C=US"
plugins.security.restapi.roles_enabled:
- "all_access"
- "security_rest_api_access"
plugins.security.system_indices.enabled: true
plugins.security.system_indices.indices: [".plugins-ml-model", ".plugins-ml-task", ".opendistro-alerting-config", ".opendistro-alerting-alert*", ".opendistro-anomaly-results*", ".opendistro-anomaly-detector*", ".opendistro-anomaly-checkpoints", ".opendistro-anomaly-detection-state", ".opendistro-reports-*", ".opensearch-notifications-*", ".opensearch-notebooks", ".opensearch-observability", ".opendistro-asynchronous-search-response*", ".replication-metadata-store"]
compatibility.override_main_response_version: true
curl -XGET http://10.10.20.100:9200/_cluster/health?pretty=true
Unauthorizedroot@LAB-IND:/home/stage#
curl -XGET http://10.10.20.100:9200/_cluster/allocation/explain?pretty
Unauthorizedroot@LAB-IND:/home/stage#