How to configure a secure connection for Kibana - 7.0

EnrichVersion
7.0
EnrichProdName
Talend Big Data
Talend Big Data Platform
Talend Data Fabric
Talend Data Integration
Talend Data Management Platform
Talend Data Services Platform
Talend ESB
Talend MDM Platform
Talend Real-Time Big Data Platform
EnrichPlatform
Talend Administration Center
task
Administration and Monitoring
Data Governance
Data Quality and Preparation
Deployment
Design and Development
Installation and Upgrade

How to configure a secure connection for Kibana

Subscription
If you want to connect to Kibana using a secure connection, i.e. a connection using the HTTPS protocol, you have to configure SSL in Tomcat and then link Kibana to your Talend Administration Center.
Restrictions

Note that this procedure does not work with Internet Explorer.

Modern browsers are blocking calls from https to an internal http request like http://elasticssearch:9200. This occurs when you use Kibana with SSL. To solve the issue, you can use a reverse proxy, for example Apache or NGINX, for the Elasticsearch call in config.js. For more information about how to use a reverse proxy, see https://www.reddit.com/r/elasticsearch/comments/2uhnvu/elastic_search_and_kibana_behind_a_reverse_apache/.

Configure SSL in Tomcat
  1. Go to <Tomcat_path>/conf , where <Tomcat_path> corresponds to the path where Tomcat is installed.
  2. Open the server.xml file.
  3. Comment the element beginning with <Connector port="8080" and uncomment the element starting with <Connector port="8443" as shown in the following screenshot.

  4. Replace the element starting with <Connector port="8443" with the following element:

    <Connector port="8443" protocol="org.apache.coyote.http11.Http11Protocol" keystoreFile="C:\Talend\6.0.0\tac\apache-tomcat\bin\server.keystore" keystorePass="talend" maxThreads="150" SSLEnabled="true" scheme="https" secure="true" clientAuth="false" sslProtocol="TLS" />
    You should replace the keystoreFile and the keystorePass attributes with the one that correspond to your configuration.
  5. Open your web browser and go to https://localhost:8443/kibana/#/dashboard.
Configure Kibana in Talend Administration Center
  1. Open you Talend Administration Center web application.
  2. Go to the Configuration page.
  3. In the Monitoring part, enter the following address in the Kibana URL field :https://192.168.32.127:8443/kibana.
  4. In the Logging part, enter the following address in the Logstash host and port field: 192.168.32.127:8050.
  5. In the left panel, click Logging under the Monitoring menu to check the Logging page.