I am having a similar problem. The full TICK stack is deployed as kubenetes services (each in a container). Communication between all of them is working fine (http, no security).
I am now trying to enable https + cert in influxDB. The end goal is to have security on all the services (the ones with exposed ports).
This is the relevant part of influxdb.conf :
# Determines whether HTTP endpoint is enabled.
enabled = false
# Determines whether HTTPS is enabled.
https-enabled = true
https-certificate = "/etc/ssl/name.crt"
https-private-key = "/etc/ssl/name.key"
How can I connect to the database on Chronograf ? I have also setup Chronograf to use certification (env variables on kubenetes config file) :
- name: CERT # new
- name: KEY # new
- name: INFLUXDB_URL # same as before except it is now https
I don’t see anything in the logs of influxdb (no TLS handshake, etc…). I would prefer to avoid using a reverse-proxy.
Is there a full tutorial concerning https/ssl between chronograf and influxdb ? Am I missing a step ?
Thanks in advance.