1

I am trying to build my own ElasticSearch cluster and I decided to use an open source plugin called Search Guard. It requires generation of client and host/node certificates. In its demo there is a script which generates a root ca, client and node certificates signed with the generated root ca.

My problem is that I want to use my wildcard ssl certificate for this. How can I create client and node certificates with my wildcard ssl certificate?

This is their demo page explaining how to generate the certificates, but I unfortunately couldn't manage it.

iboware
  • 111
  • 3

1 Answers1

0

To generate a wildcard cert, follow the same procedure but add a wildcard to the CN -- so instead of CN=foo.example.com, use CN=*.example.com.

Jason Martin
  • 4,865
  • 15
  • 24
  • You got me wrong. I already have a wildcard SSL certificate but I understood that it is not possible to sign a new client or node certificate with a domain certificate, which is my wildcard certificate. A root certificate or intermediate certificate is required for this. – iboware Jun 15 '16 at 00:01