Closed
Description
After switching to the Red Hat base docker image in this commit, the final docker image is missing root certificates.
The ubi-micro docker image does not contain root authority certificates.
The logstash docker image is built on top of the ubi-minimal image, which includes root certificates.
In our elasticsearch installation, we use certificates from Let’s Encrypt, and after upgrading apm-server to version 9, we are seeing the following messages in the logs:
{"log.level":"error","@timestamp":"2025-05-15T10:14:39.810Z","log.logger":"beater","log.origin":{"function":"github.com/elastic/apm-server/internal/beater.waitReady","file.name":"beater/waitready.go","file.line":64},"message":"precondition failed: x509: certificate signed by unknown authority","service.name":"apm-server","ecs.version":"1.6.0"}
Metadata
Metadata
Assignees
Labels
No labels