Loading...

Remove password from private ssl key

In the kibana.yml configuration, I setup the mandatory configuration for SSL.

server.ssl.key: "/opt/kibana/latest/ssl/key.pem"
server.ssl.cert: "/opt/kibana/latest/ssl/cert.pem"

Kibana can’t handle private SSL certificates with passwords (key.pem).

tail -f /var/log/kibana/error.log
FATAL [Error: error:0907B068:PEM routines:PEM_READ_BIO_PRIVATEKEY:bad password read]

Therefore I had to remove the password in order to use existing private key. We just export the key into a new keyfile.

openssl rsa -in key.pem -out newkey.pem

The new file should contain following beginning and end:

-----BEGIN RSA PRIVATE KEY-----
...
-----END RSA PRIVATE KEY-----