Skip to content

Instantly share code, notes, and snippets.

@jalogisch

jalogisch/generate_ece_cert.sh

Last active May 30, 2022 14:53
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save jalogisch/f4e833378b6148ea6561f75302e19e5e to your computer and use it in GitHub Desktop.
Save jalogisch/f4e833378b6148ea6561f75302e19e5e to your computer and use it in GitHub Desktop.
Download ZIP
create custom self signed ECE certificates
Raw
generate_ece_cert.sh
export ELASTICSEARCH_IMG=docker.elastic.co/elasticsearch/elasticsearch:7.8.0
export DOMAIN="ece.internal"
docker run --rm -v "$(pwd)":/tmp/certs -w /tmp/certs $ELASTICSEARCH_IMG /usr/share/elasticsearch/bin/elasticsearch-certutil ca \
--pem \
--out /tmp/certs/ca.zip
unzip ca.zip
docker run --rm -v "$(pwd)":/tmp/certs -w /tmp/certs $ELASTICSEARCH_IMG /usr/share/elasticsearch/bin/elasticsearch-certutil cert \
--pem \
--name server \
--dns "${DOMAIN},*.${DOMAIN}" \
--out /tmp/certs/server.zip \
--ca-cert /tmp/certs/ca/ca.crt \
--ca-key /tmp/certs/ca/ca.key
unzip server.zip
cat server/server.key server/server.crt ca/ca.crt > ece.cert.bundle
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment