Title
#kolide
z

Zach Zeid

08/31/2020, 2:11 PM
I've set
KOLIDE_SERVER_TLS
to
true
and I get
{ "terminated": "tls: failed to find any PEM data in key input", "ts": "2020-08-31T14:07:27.746925412Z" }
However, if it's set to false, the logs show that
transport
is
http
, but communication between hosts and fleet are still good. I've confirmed the key data is good, what am I missing?
zwass

zwass

08/31/2020, 5:47 PM
Are you terminating TLS at a load balancer or somewhere besides Fleet?
z

Zach Zeid

08/31/2020, 5:48 PM
I solved the initial issue, where the key wasn't being properly decoded on start. At this point, I'm getting
"Client sent an HTTP request to an HTTPS server."
and that's more to do with how I set up Kolide Fleet than anything else.
zwass

zwass

08/31/2020, 5:49 PM
Sounds likely that the LB is terminating TLS and sending an HTTP request to the Fleet server.
z

Zach Zeid

08/31/2020, 5:50 PM
yeah, using AWS NLB with a cert, but should be forwarding HTTPS. When I figure ou tthe issue, I'll write a blog post 😄