Posted on 08-03-2016 09:41 AM
Im working on setting up filebeats for logging PCI data. We want to encrypt the data that gets sent over the wire and it needs the Device identity that JAMF assigns to every computer. Since the Device Identity (Cert + Key) is in Keychains. Im not sure how to use it with filebeats config files. The config file for TLS is something like this:
tls: certificate: "/etc/client.crt" certificate_key: "/etc/client.key" certificate_authorities: ["/etc/ca_bundle.pem"]
So I think what I need to do is find a way to script the exportation of that identity so it can be used by filebeats. Does anyone have any thoughts on how to go about this?