I've set

KOLIDE_SERVER_TLS

to

true

and I get

{ "terminated": "tls: failed to find any PEM data in key input", "ts": "2020-08-31T14:07:27.746925412Z" }

However, if it's set to false, the logs show that

transport

is

http

, but communication between hosts and fleet are still good. I've confirmed the key data is good, what am I missing?

Are you terminating TLS at a load balancer or somewhere besides Fleet?

I solved the initial issue, where the key wasn't being properly decoded on start. At this point, I'm getting

"Client sent an HTTP request to an HTTPS server."

and that's more to do with how I set up Kolide Fleet than anything else.

Sounds likely that the LB is terminating TLS and sending an HTTP request to the Fleet server.

yeah, using AWS NLB with a cert, but should be forwarding HTTPS. When I figure ou tthe issue, I'll write a blog post 😄