Configure SSL suport for AD authentication.

  1. Open the certificate manager on the AD server.

  1. Select the certificate and open it

  1. Select the option of copying to a file in the Details tab

  1. Click the Next button

  1. Keep the setting as shown below and click Next

  1. Keep the setting as shown below and click Next.

  1. Give the name a certificate

After the certificate is exported, this certificate should be imported into a trusted certificate file that will be used by the Elasticsearch plugin.

To import a certificate into a trusted certificate file, a tool called „keytool.exe” is located in the JDK installation directory.

Use the following command to import a certificate file:

keytool -import -alias adding_certificate_keystore -file certificate.cer -keystore certificatestore

The values for RED should be changed accordingly.

By doing this, he will ask you to set a password for the trusted certificate store. Remember this password, because it must be set in the configuration of the elasticsearch plugin. The following settings must be set in the elasticsearch.yml configuration for SSL:ssl.keystore.file: "<path to the trust certificate store>"

ssl.keystore.password: "< password to the trust certificate store>"