es配置安全集群es使用的自带的jdk环境,如果服务器全局在有jdk的配置。会导致秘钥解析出问题。各种问题异常密钥解析异常。
错误日志1:
[2024-12-20T17:10:44,700][WARN ][o.e.c.c.ClusterFormationFailureHelper] [es-node1] master not discovered yet, this node has not previously joined a bootstrapped (v7+) cluster, and this node must discover master-eligible nodes [es-node1:9200, es-node2:9202] to bootstrap a cluster: have discovered [{es-node1}{f-lOebgqT52PTgkShdMnQw}{POtUMeK8SGuVRP5GBGdFkg}{192.168.113.187}{192.168.113.187:9300}{dilmrt}{ml.machine_memory=16655990784, xpack.installed=true, transform.node=true, ml.max_open_jobs=20}]; discovery will continue using [192.168.113.187:9302] from hosts providers and [{es-node1}{f-lOebgqT52PTgkShdMnQw}{POtUMeK8SGuVRP5GBGdFkg}{192.168.113.187}{192.168.113.187:9300}{dilmrt}{ml.machine_memory=16655990784, xpack.installed=true, transform.node=true, ml.max_open_jobs=20}] from last-known cluster state; node term 0, last-accepted version 0 in term 0
错误日志2:
[elasticsearch-node1] failed to establish trust with server at [elasticsearch-node2]; the server provided a certificate with subject name [CN=instance] and fingerprint [ac748c91fa55f5d193c85c3be64a605c52d93894]; the certificate has subject alternative names [IP:192.168.113.187]; the certificate is issued by [CN=Elastic Certificate Tool Autogenerated CA]; the certificate is signed by (subject [CN=Elastic Certificate Tool Autogenerated CA] fingerprint [8474d3dc8c99880f30b2c60a9e8059dfd0d3d7a8] {trusted issuer}) which is self-issued; the [CN=Elastic Certificate Tool Autogenerated CA] certificate is trusted in this ssl context ([xpack.security.transport.ssl]
如果对你有帮助,一块也是爱
