[SOLR-16170] SSL configuration not working in AWS linux ec2 server even after following the steps mentioned by documentation from solr - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Test
Status: Resolved
Priority: Major
Resolution: Invalid
Affects Version/s: 8.11.1
Fix Version/s: None
Component/s: security
Labels:
- aws-ec2
- linux
- ssl

Description

Hi,

I am using solr version 8.11.1 installed in aws linux ec2. I tried the SSL configuration as per the steps mentioned in solr documentation for the same version. But it was not working in https. Still it works in http only. The following are the details,

The installation directory is

/opt/solr

the ssl file is created using keytool command and converted to pem format which is placed in the directory

/opt/solr/server/etc

the solr.in.sh file is placed in the directory

/opt/solr/bin

and the content in the solr.in.sh file is as follows

SOLR_SSL_ENABLED=true

Uncomment to set SSL-related system properties
Be sure to update the paths to the correct keystore for your environment
SOLR_SSL_KEY_STORE=etc/cert.pem
SOLR_SSL_KEY_STORE_PASSWORD=keysecret

SOLR_SSL_TRUST_STORE=etc/cert.pem
SOLR_SSL_TRUST_STORE_PASSWORD=keysecret

Require clients to authenticate
SOLR_SSL_NEED_CLIENT_AUTH=false
Enable clients to authenticate (but not require)
SOLR_SSL_WANT_CLIENT_AUTH=false
SSL Certificates contain host/ip "peer name" information that is validated by default. Setting
this to false can be useful to disable these checks when re-using a certificate on many hosts
SOLR_SSL_CHECK_PEER_NAME=true

With the above information, pls advise why ssl is not working for me.
Thanks,
Sree

Attachments

Activity

People

Assignee:: Unassigned

Reporter:: Sridhar

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 26/Apr/22 07:25

Updated:: 12/May/22 00:35

Resolved:: 26/Apr/22 08:50