Graylog-datanode stuck in provisioning certificate (step 3) #20757
Labels
Comments
|
My bad, it was a permission issue in my opensearch data folder. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
I’m trying to migrate from opensearch 2.15.0 to Graylog-datanode
During migration attempt, Graylog-datanode stuck in provisioning certificate (step 3), it never goes beyond this step.
Graylog with SSL is working following the guide below, no problems at all, just can't migrate to graylod-datanode.
https://graylog.org/post/how-to-guide-securing-graylog-with-tls/
Expected Behavior
Migration from opensearch to graylog-datanode should work.
Current Behavior
It gets stuck in migration step 3, provisioning certificate to data nodes.
Possible Solution
I noticed that during the migration wizard, the transport address showed doesn't match my CNAME in my certificate, it gets the hostname https://rpi5:9200, already tried to change the hostname in datanode.conf but it doesn't seem to honor that setting.
A possible solution would be for the CNAME in transport address to match the bundled CA that I'm uploading.
Also tried to generate the CA in the Wizard, Graylog CA, but the same problem happens.
Steps to Reproduce (for bugs)
Configured using same values as Graylog server.conf for: password_secret, root_password_sha2.
Context
Can't migrate from opensearch 2.15 to graylod-datanode
Your Environment
Steps have you already taken to try and solve the problem?
Tried to use a self signed CA during the migration attempt.
Also tried to upload my own bundled CA, upload works but there is no improvement, I get stuck in the same step (Provisioning certificate do data nodes).
Tried to in datanode.conf, to set a hostname matching my CA, but it seems that transport address remains the same in the migration page.
The text was updated successfully, but these errors were encountered: