My Oracle Support Banner

E-ES: Can the Elasticsearch.yml File Work With Multiple Root And Trust Certificates ? (Doc ID 2427952.1)

Last updated on JULY 26, 2018

Applies to:

PeopleSoft Enterprise PT PeopleTools - Version 8.56 and later
Information in this document applies to any platform.

Goal

On : 8.56 version, Elastic Search

How to edit elasticsearch.yml file to work with multiple root and trust certificates ?

We have two environments running on similar tools and application versions. However they are using different "trust.jks"(real file name is different) and "root.jks"(real file name is different) keystore certificates. Both the environments are SSL enabled. Requirement is to use URL for "Call Back Properties" as https under "Search Instance" page configuration. For the same "elasticsearch.yml" file has been edited as follows. Right now we have different "keystore" and "truststore" files for different environments. Is there any way to accommodate the values in the YML file ? Existing elasticsearch.yml file is edited for one environment and is working. Requirement is to add another environment's keystore and trust certificate to same YML file.

# ---------------------------------- SSL/TLS ----------------------------------
#
#
 orclssl.http.ssl: false
 orclssl.transport.ssl: false
 
# when the peoplesoft callback url is https, install the Peoplesoft Root CA certificate in Elasticsearch truststore.
 orclssl.keystore: psft/pt/es2.3.2/config/keystore/trust.jks
 orclssl.keystore_password:
 orclssl.truststore: psft/pt/es2.3.2/config/keystore/trust.jks
 orclssl.truststore_password:
 

Solution

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.