Don, Make sure the directory and cacerts file are readable by the user running graylog-server (i.e. user graylog or the like). I spent quite a while getting HTTPS working today as well. Unfortunately, cert management with Java apps always seems to be a pain.
Cheers, Daniel On Thursday, October 27, 2016 at 2:23:42 PM UTC-4, Don Bindley wrote: > > > http://docs.graylog.org/en/2.1/pages/configuration/https.html > > In order for the JVM to pick up the new trust store, it has to be started > with the JVM parameter -Djavax.net.ssl.trustStore=/path/to/cacerts.jks. > If you’ve been using another password to encrypt the JVM trust store than > the default changeit, you additionally have to set the JVM parameter > -Djavax.net.ssl.trustStorePassword=secret. > > On Thursday, October 27, 2016 at 8:06:31 AM UTC-7, Jochen Schalanda wrote: > >> Hi Don, >> >> On Thursday, 27 October 2016 16:26:58 UTC+2, Don Bindley wrote: >>> >>> I just ran the command that was in the documentation from a command line. >>> >> >> Again: which command did you run *exactly* and which part of the >> documentation are you referring to? >> >> >> Cheers, >> Jochen >> > -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/graylog2/595245fc-bc53-4ec0-93e3-5fb2bb371604%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
