Help Center> Cloud Search Service> User Guide> Logstash> Managing Certificates
Updated on 2024-04-19 GMT+08:00
View PDF

Managing Certificates

CSS provides a default CA certificate, which is used to trust an HTTPS server when the client connects to the server. You can also upload a customized certificate file based on your service requirements.

Viewing the Default Certificate

  1. Log in to the CSS management console.
  2. Choose Clusters > Logstash and click the name of a Logstash cluster. The basic cluster information page is displayed.
  3. Click Certificate Management. On the Default Certificates tab page, view the default CA certificate of the CSS Elasticsearch cluster, including certificate name, certificate path, certificate status, and description.

Uploading a Custom Certificate

  1. Prepare a custom certificate and upload it to an OBS bucket. For details, see section Uploading a File.

    If no OBS bucket is available, go to the OBS console to create one. For details, see Creating a Bucket.

    The certificate name contains 4 to 32 characters, must start with a letter, and end with .cer/.crt/.rsa/.jks/.pem/.p10/.pfx/.p12/.csr/.der/.keystore. The value can contain letters, digits, hyphens (-), underscores (_), and dots (.). Other special characters are not allowed.

    Up to 50 certificates can be uploaded.

    The certificate file size cannot exceed 1 MB.

  2. Log in to the CSS management console.
  3. Choose Clusters > Logstash and click the name of a Logstash cluster. The basic cluster information page is displayed.
  4. Choose Certificate Management and click the Custom Certificates tab.
  5. Click Upload Certificate in the upper left corner. In the displayed dialog box, select OBS Bucket and Certificate Object.
    • OBS Bucket: Select an OBS bucket to store the certificates.

      If no OBS bucket is available, click Create Bucket on the right to go to OBS console and create a bucket. For details, see Creating a Bucket.

    • Certificate Object: Click Select. In the Select Certificate Object dialog box, select the custom certificate that has been uploaded to the OBS bucket in advance and click OK.
  6. Click OK to upload the custom certificate.

Deleting a Custom Certificate

  1. Log in to the CSS management console.
  2. Choose Clusters > Logstash and click the name of a Logstash cluster. The basic cluster information page is displayed.
  3. Choose Certificate Management and click the Custom Certificates tab.
  4. Select the target certificate and click Delete in the Operation column. In the confirmation dialog box, click OK.
Parent topic: Logstash