Watcher Settings

You can configure the following settings for Watcher in the elasticsearch.yml configuration file.

watcher.http.proxy.host: Specifies the address of the proxy server to use to connect to HTTP services.
watcher.http.proxy.port: Specifies the port number to use to connect to the proxy server.
watcher.http.ssl.keystore.path: The SSl keystore path to use for PKI-based authentication. If not specified, the Watcher HTTP client falls back to the value of the shield.ssl.keystore.path setting.
watcher.http.ssl.keystore.password: The SSl keystore password to use for PKI-based authentication. If not specified, the Watcher HTTP client falls back to the value of the shield.ssl.keystore.password setting.
watcher.http.ssl.truststore.path: The SSl truststore path to use for specifying the certificates and certificate authorities to trust. If not specified, the Watcher HTTP client falls back to the value of the shield.ssl.truststore.path setting.
watcher.http.ssl.truststore.password: The SSl truststore password to use for access to the truststore. If not specified, the Watcher HTTP client falls back to the value of the shield.ssl.truststore.password setting.
watcher.http.ssl.verification_mode: Specifies whether the HTTP client should verify hostnames or certificates only. The default is full, which verifies both the certificate and server’s hostname. The only other valid option is certificate, which skips hostname verification but still requires the server’s certificate to be trusted.