Hi,

For testing purposes, I would like to run an OpenSearch node in a docker container and connect my test DMA with that. With the opensearchproject/opensearch:latest image, I have a docker image that can be used and I'm also able to reach the IP from where my DMA is running. The only issue is on how to set up the proper certificates so browsing to "https" is trusted.

I'm following the steps as described here: Installing an OpenSearch database | DataMiner Docs and the problem I'm facing is on how to deploy the certificates. If I open a bash script inside the docker container I'm not able to execute update-ca-certificates as that command is not known, executing apt-get update && apt-get install -y ca-certificates is also not possible because the apt-get command does not exist, and probably manually adding the apt-get package will also not be possible because dpkg command also does not exist.

I'm aware of this site: Docker - OpenSearch Documentation which gives the explanation when using pem files, but in my case there is a rootCA.crt file.

Also note that the OpenSearch docker container mentions "OpenSSL not available (this is not an error, we simply fallback to built-in JDK SSL)", could this cause an issue as rootCA.crt could be checked with openssl verify rootCA.crt and I don't know how much openssl is needed for PKCS12?

Would anyone have experience on how to deploy the own created certificates, as described in the DataMiner Docs, on the OpenSearch docker container?

Regards,