Hi Evgueni, if you're using a self-signed certificate, you have to add it to the JVM trust store: http://docs.graylog.org/en/2.1/pages/configuration/https.html#adding-a-self-signed-certificate-to-the-jvm-trust-store
Cheers, Jochen On Monday, 17 October 2016 20:31:57 UTC+2, Evgueni Gordienko wrote: > > Changed permissions to 0444 for cert/key files and 0755 for embracing > folder - restarted without problem. > The issue starts when I login via GUI - attached WARN message - see > attached file. > Why it refers to my secondary interface (10.0.0.16) and not primary one > 192.168.17.15 ? > > Please clarify - what could be wrong? > > Cheers > Evgueni > > > On Sunday, October 16, 2016 at 11:24:36 PM UTC-7, Jochen Schalanda wrote: >> >> Hi Evgueni, >> >> On Friday, 14 October 2016 22:32:58 UTC+2, Evgueni Gordienko wrote: >>> >>> I enabled tls and the file graylog complains about is there and hase >>> 0777 permissions set but still I get: >>> >> >> Access permissions of 0777 (readable, writable, and executable for >> everyone) are a bit too permissive. >> >> The private key and certificate files must simply be readable and the >> directories must be usable (i. e. readable and executable) by the system >> user running Graylog (e. g. "graylog" in most cases). >> >> You can check this by running namei -l >> /etc/graylog/secrets/pkcs8-encrypted.pem. >> >> On Sunday, 16 October 2016 17:16:44 UTC+2, Evgueni Gordienko wrote: >>> >>> But even after that it looks like I'm having same issue as in >>> >>> https://groups.google.com/forum/#!searchin/graylog2/read$20key|sort:relevance/graylog2/V4eqM5ah_ik/wDmRW7JFBQAJ >>> >> >> Which issue is this, specifically? >> >> Cheers, >> Jochen >> > -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/graylog2/ff600982-4b66-46c9-ab14-875193a6420e%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
