Skip to content

[BUG] Security demo certificate is using deprecated setttings #5697

New issue
New issue
Open
Open
[BUG] Security demo certificate is using deprecated setttings#5697
Labels
bugSomething isn't workinggood first issueThese are recommended starting points for newcomers looking to make their first contributions.triagedIssues labeled as 'Triaged' have been reviewed and are deemed actionable.
@nathaliellenaa

Description

@nathaliellenaa
nathaliellenaa
opened on Oct 10, 2025

What is the bug?
Security demo certificate is using deprecated settings:

  • plugins.security.ssl.transport.enforce_hostname_verification instead of transport.ssl.enforce_hostname_verification

How can one reproduce the bug?
Steps to reproduce the behavior:

  1. Use security demo certificate
  2. Check automatically added configuration in opensearch.yml. See plugins.security.ssl.transport.enforce_hostname_verification: false

What is the expected behavior?
Security demo certificate use the new settings transport.ssl.enforce_hostname_verification

What is your host/environment?
OS 3.3

Do you have any screenshots?
If applicable, add screenshots to help explain your problem.

Do you have any additional context?
Configuration doc: https://docs.opensearch.org/latest/security/configuration/tls/#advanced-hostname-verification-and-dns-lookup

Metadata

Metadata

Assignees

No one assigned

    Labels

    bugSomething isn't workinggood first issueThese are recommended starting points for newcomers looking to make their first contributions.triagedIssues labeled as 'Triaged' have been reviewed and are deemed actionable.

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions