![This combination of host and port requires tls.](https://kumkoniak.com/55.jpg)
![this combination of host and port requires tls. this combination of host and port requires tls.](https://thecuriousdev.com/images/SSH_Tunnels_3.png)
The Linux Foundation has registered trademarks and uses trademarks. © Prometheus Authors 2014-2023 | Documentation Distributed under CC-BY-4.0 Please help improve it by filing issues or pull requests. You can connect to the Prometheus server without specifying certs using the -insecure or -k flag: curl -k You can then use cURL to interact with your local Prometheus setup: curl -cacert /home/prometheus/certs// \
![this combination of host and port requires tls. this combination of host and port requires tls.](https://krystalchisholm.files.wordpress.com/2010/10/host-configuration-issues.jpg)
If you'd like to test out TLS locally using the domain, you can add an entry to your /etc/hosts file that re-routes to localhost: 127.0.0.1 The -web.external-url= flag is optional here. To make Prometheus use this config, you will need to call it with the flag tls_server_config:Ĭert_file: /home/prometheus/certs// With this configuration, Prometheus will serve all its endpoints behind TLS. Prometheus configurationīelow is an example web-config.yml configuration file. You can generate a self-signed certificate and private key using this command: mkdir -p /home/prometheus/certs/