Incorrect file type for certs generated by docker-compose #1708
Comments
|
Same issue. Just followed steps in the docs. I'm on Fedora Server 41 Tried as root with no change. Messed with permissions as well, no luck. Odd. adam@portainer:/opt/wazuh-docker/single-node$ docker-compose -f generate-indexer-certs.yml run --rm generator
WARN[0000] /opt/wazuh-docker/single-node/generate-indexer-certs.yml: the attribute `version` is obsolete, it will be ignored, please remove it to avoid potential confusion
The tool to create the certificates exists in the in Packages bucket
29/01/2025 12:27:01 INFO: Generating the root certificate.
29/01/2025 12:27:01 INFO: Generating Admin certificates.
29/01/2025 12:27:01 INFO: Admin certificates created.
29/01/2025 12:27:01 INFO: Generating Wazuh indexer certificates.
29/01/2025 12:27:01 INFO: Wazuh indexer certificates created.
29/01/2025 12:27:01 INFO: Generating Filebeat certificates.
29/01/2025 12:27:01 INFO: Wazuh Filebeat certificates created.
29/01/2025 12:27:01 INFO: Generating Wazuh dashboard certificates.
29/01/2025 12:27:02 INFO: Wazuh dashboard certificates created.
Moving created certificates to the destination directory
cp: cannot create regular file '/certificates/admin-key.pem': Permission denied
cp: cannot create regular file '/certificates/admin.pem': Permission denied
cp: cannot create regular file '/certificates/root-ca.key': Permission denied
cp: cannot create regular file '/certificates/root-ca.pem': Permission denied
cp: cannot create regular file '/certificates/wazuh.dashboard-key.pem': Permission denied
cp: cannot create regular file '/certificates/wazuh.dashboard.pem': Permission denied
cp: cannot create regular file '/certificates/wazuh.indexer-key.pem': Permission denied
cp: cannot create regular file '/certificates/wazuh.indexer.pem': Permission denied
cp: cannot create regular file '/certificates/wazuh.manager-key.pem': Permission denied
cp: cannot create regular file '/certificates/wazuh.manager.pem': Permission denied
Changing certificate permissions
chmod: changing permissions of '/certificates': Permission denied
chmod: cannot access '/certificates/*': No such file or directory
Setting UID indexer and dashboard
chown: cannot access '/certificates/*': No such file or directory
Setting UID for wazuh manager and worker
cp: cannot stat '/certificates/root-ca.pem': No such file or directory
cp: cannot stat '/certificates/root-ca.key': No such file or directory
chown: cannot access '/certificates/root-ca-manager.pem': No such file or directory
chown: cannot access '/certificates/root-ca-manager.key': No such file or directory
chown: cannot access '/certificates/wazuh.manager.pem': No such file or directory
chown: cannot access '/certificates/wazuh.manager-key.pem': No such file or directory |
|
@yok0 Is your architecture arm64? |
|
@seolheun36 no, it's 86_64 root@portainer:/opt/wazuh-docker/single-node# uname -a
Linux portainer 6.12.9-200.fc41.x86_64 #1 SMP PREEMPT_DYNAMIC Thu Jan 9 16:05:40 UTC 2025 x86_64 GNU/Linuxroot@portainer:/opt/wazuh-docker/single-node# rpm -qa | grep docker
docker-cli-27.3.1-2.fc41.x86_64
docker-compose-2.30.3-1.fc41.x86_64
docker-compose-switch-1.0.5-1.fc41.x86_64
docker-buildx-0.18.0-1.fc41.x86_64 |
|
@seolheun36 not sure if your issues is the same but mine turned out to be selinux. |
|
Facing same problem, the certs are created as directories.
I'm using Ubuntu and has no selinux so... I don't know. Using last release 4.11.1 EDIT: |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
When I ran single-node with docker-compose on wazuh-docker v4.9.2, the certs files created inside
wazuh-docker/single-node/config/wazuh-indexer-ssl-certs/were all of directory type.When I cleared all the files inside the
wazuh-docker/single-node/wazuh-indexer-ssl-certs/directory before running docker-compose in any other way and used docker-compose -f generate-indexer-certs.yml --rm, I had the following issue.The text was updated successfully, but these errors were encountered: