Skip to main content
Solved

Elasticsearch Backup using SSL/TLS


Forum|alt.badge.img+1

We have deployed the Elasticsearch Backup and Restore workflows and found that the URL references within them are using http://.

 

We prefer to use encryption so is it as simple as changing the (4 in Backup / 13 in Restore) actions from http:// to https:// ?

Best answer by Veena Shivashankar

Hi @Steve F ,

Yes, it should work by changing http:// to https:// in the workflow. 

Also, the CA certificate in .cer format needs to be copied under <CV install_path>\certificates folder on the CommServer and the command importcert executed. Post this, the workflow engine service has to be restarted.

Let us know if there are any further questions.

View original
Did this answer your question?

6 replies

Onno van den Berg
Commvault Certified Expert
Forum|alt.badge.img+19

I never used but you can just give it a try, right? If it doesn't work you just revert back the change. Looking from the docs I do not think you can specify it but like I said I never used it. Changing the port to 443 could also do the trick!


Mike Struening
Vaulter
Forum|alt.badge.img+23

Thanks for the post, @Steve F !

I’m checking with the owner of the Workflow (posted below for anyone following along).

https://cloud.commvault.com/webconsole/softwarestore/#!/136/671/19287


Forum|alt.badge.img+1
  • Author
  • Bit
  • 3 replies
  • August 10, 2022
Onno van den Berg wrote:

I never used but you can just give it a try, right? If it doesn't work you just revert back the change. Looking from the docs I do not think you can specify it but like I said I never used it. Changing the port to 443 could also do the trick!

This is something we are looking into.  Our configuration uses a non-standard port, e.g. 12345, which was tested using a script before we started at the CommVault end.


Forum|alt.badge.img

Hi @Steve F ,

Yes, it should work by changing http:// to https:// in the workflow. 

Also, the CA certificate in .cer format needs to be copied under <CV install_path>\certificates folder on the CommServer and the command importcert executed. Post this, the workflow engine service has to be restarted.

Let us know if there are any further questions.


Forum|alt.badge.img+1
  • Author
  • Bit
  • 3 replies
  • August 22, 2022
Veena Shivashankar wrote:

Hi @Steve F ,

Yes, it should work by changing http:// to https:// in the workflow. 

Also, the CA certificate in .cer format needs to be copied under <CV install_path>\certificates folder on the CommServer and the command importcert executed. Post this, the workflow engine service has to be restarted.

Let us know if there are any further questions.

Thank you for your reply.  We indeed found just doing the http:// to https:// needed something else.

 

Our project team started down the pre-script route on Friday morning.  I’ll update if we implement secure workflows.


Forum|alt.badge.img+1
  • Author
  • Bit
  • 3 replies
  • September 15, 2022

This works.

If anyone else is doing this you will also need to change both “form URL” as it creates the URL used by “Take Backup” as “Take Backup” doesn’t have ‘http://’ before the ‘xpath’ variable.

Our initial changes were done via the XML view with debugging in the Graph view.


Reply


Cookie policy

We use cookies to enhance and personalize your experience. If you accept you agree to our full cookie policy. Learn more about our cookies.

 
Cookie settings