I would like to share this information to help the community:* how to configure https in graylog2 web interface*
This is for people that have followed the instructions on https://gist.github.com/hggh/7492598 Works on Graylog version: 0.20.3 - Ubuntu 14.04 Adjust these settings to your needs... Create a keystore: - keytool -alias graylog2key -genkey -keyalg RSA -validity 3650 -keystore graylog2.keystore Self signed certificate (maybe optional...?): - keytool -selfcert -validity 3650 -keystore graylog2.keystore -alias graylog2key Move the key to your graylog installation folder: - mkdir /opt/graylog2/key - mv graylog2.keystore /opt/graylog2/key/ - chmod 600 /opt/graylog2/key/graylog2.keystore - chown _graylog2 /opt/graylog2/key/graylog2.keystore Adjust graylog2-web init script - vim /etc/init.d/graylog2-web DAEMON_ARGS="-Xms${JAVA_MIN_MEM} -Xmx${JAVA_MAX_MEM} *-Djava.net.preferIPv4Stack=true -Dhttps.port=443 -Dhttps.keyStore="/opt/graylog2/key/graylog2.keystore" -Dhttps.keyStorePassword="XXXXX" -Dhttp.port=disabled* -Dlogger.file=/etc/graylog2/web/graylog2-web-logger.xml -XX:MaxPermSize=${JAVA_MAX_PERM_SIZE} -Duser.dir=${GRAYLOG2_WEB_HOME} -Dpidfile.path=$PIDFILE -cp \"$JAVA_CLASS_PATH\" play.core.server.NettyServer" su -s /bin/bash -c "nohup *authbind --deep* $DAEMON $DAEMON_ARGS >> /var/log/graylog2-web/console.log 2>&1 &" _graylog2 Install and configure authbind - apt-get install authbind - touch /etc/authbind/byport/443 - chmod 500 /etc/authbind/byport/443 - chown "_graylog2" /etc/authbind/byport/443 Now access your graylog server on: https://mygraylog That I remember there is no need to modify any other file.... If someone finds any problem with these configurations please comment. -- You received this message because you are subscribed to the Google Groups "graylog2" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/d/optout.
