Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Cherry-pick #24142 to 7.x: [Elastic Agent] Add options to bootstrap Fleet Server with TLS #24191

Merged
merged 2 commits into from
Mar 2, 2021
Merged

Cherry-pick #24142 to 7.x: [Elastic Agent] Add options to bootstrap Fleet Server with TLS #24191

merged 2 commits into from
Mar 2, 2021

Conversation

blakerouse
Copy link
Contributor

@blakerouse blakerouse commented Feb 23, 2021
edited by zube bot
Loading

Cherry-pick of PR #24142 to 7.x branch. Original message:

What does this PR do?

Adds command line arguments to enroll and install so Fleet Server can be bootstrapped with TLS enabled. By default if no options are provided a self-signed certificate is generated and the Elastic Agent communicates to the local bootstrapped Fleet Server with a pinned CA.

Why is it important?

Required so Fleet Server is bootstrapped securely in the default case and provide the ability for custom certificates to be used for bootstrapping Fleet Server in production.

Checklist

  • My code follows the style guidelines of this project
  • I have commented my code, particularly in hard-to-understand areas
  • [ ] I have made corresponding changes to the documentation
  • [ ] I have made corresponding change to the default configuration files
  • [ ] I have added tests that prove my fix is effective or that my feature works
  • I have added an entry in CHANGELOG.next.asciidoc or CHANGELOG-developer.next.asciidoc.

Related issues

@blakerouse
[Elastic Agent] Add options to bootstrap Fleet Server with TLS (elast…
15266f0 
…ic#24142)

* Add support for SSL with bootstraping fleet-server.

* Run mage fmt.

* Fix issues with enrollment w/ fleet-server.

* Add changelog.

(cherry picked from commit 74b6e5e)
@elasticmachine
Copy link
Collaborator

Pinging @elastic/agent (Team:Agent)

@elasticmachine
Copy link
Collaborator

Pinging @elastic/ingest-management (Team:Ingest Management)

@botelastic botelastic bot added needs_team Indicates that the issue/PR needs a Team:* label and removed needs_team Indicates that the issue/PR needs a Team:* label labels Feb 23, 2021
@blakerouse blakerouse self-assigned this Feb 23, 2021
@elasticmachine
Copy link
Collaborator

elasticmachine commented Feb 23, 2021
edited by jenkins-beats-ci bot
Loading

💚 Build Succeeded

the below badges are clickable and redirect to their specific view in the CI or DOCS
Pipeline View Test View Changes Artifacts preview

Expand to view the summary

Build stats

  • Build Cause: Pull request #24191 updated

  • Start Time: 2021-03-01T22:37:26.954+0000

  • Duration: 54 min 25 sec

  • Commit: 6667b21

Test stats 🧪

Test Results
Failed 0
Passed 6486
Skipped 24
Total 6510

Trends 🧪

Image of Build Times

Image of Tests

💚 Flaky test report

Tests succeeded.

Expand to view the summary

Test stats 🧪

Test Results
Failed 0
Passed 6486
Skipped 24
Total 6510

@blakerouse
Copy link
Contributor Author

/test

michalpristas
michalpristas approved these changes Mar 2, 2021
View reviewed changes
Copy link
Contributor

@michalpristas michalpristas left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

backport looks good

@michalpristas
Copy link
Contributor

/package

@blakerouse blakerouse merged commit c807f79 into elastic:7.x Mar 2, 2021
@blakerouse blakerouse deleted the backport_24142_7.x branch March 2, 2021 13:21
@zube zube bot removed the [zube]: Done label Jun 1, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@michalpristas michalpristas michalpristas approved these changes

Assignees

@blakerouse blakerouse

Labels
backport Team:Elastic-Agent Label for the Agent team
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@blakerouse @elasticmachine @michalpristas